a2e73c0ff65c5e700f764d323d1402c5bb98fad62631123df2b3dd28036d9193 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2e73c0ff65c5e700f764d323d1402c5bb98fad62631123df2b3dd28036d9193N
Size

46KB
Sample

240919-wnrmdasfmn
MD5

8ad0371bf65f9cee80aee35932be2250
SHA1

2cc6fa0b0e5096ff0d3f37afe17f461707620767
SHA256

a2e73c0ff65c5e700f764d323d1402c5bb98fad62631123df2b3dd28036d9193
SHA512

d6ced22b7d9edbe544d62e47c977b2605d6fe50e129f708481eca76b0c0beefe6c3b4269ec5c2f163506a7966a01867db1c7a070199549c9b4619b670d92b6bd
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh1:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYV

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  a2e73c0ff65c5e700f764d323d1402c5bb98fad62631123df2b3dd28036d9193N
- Size
  
  46KB
- MD5
  
  8ad0371bf65f9cee80aee35932be2250
- SHA1
  
  2cc6fa0b0e5096ff0d3f37afe17f461707620767
- SHA256
  
  a2e73c0ff65c5e700f764d323d1402c5bb98fad62631123df2b3dd28036d9193
- SHA512
  
  d6ced22b7d9edbe544d62e47c977b2605d6fe50e129f708481eca76b0c0beefe6c3b4269ec5c2f163506a7966a01867db1c7a070199549c9b4619b670d92b6bd
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh1:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYV
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence