3ce12ebd9b4cdcffbdcd88374d26d1faf90f9e3d78eb682bc0e7e420b4125fa5 | Triage

Sharing

General

Target

3ce12ebd9b4cdcffbdcd88374d26d1faf90f9e3d78eb682bc0e7e420b4125fa5N
Size

55KB
Sample

240921-fgpw7swclk
MD5

fffc32f9757655c8824db3cab006d600
SHA1

44cfa80abcb6ea8640d2493f08b4f53d27b19a1f
SHA256

3ce12ebd9b4cdcffbdcd88374d26d1faf90f9e3d78eb682bc0e7e420b4125fa5
SHA512

5b11af9a35488660d7b30e1666e7e0269643ee5640001a7105699a561eaf27b809bc4cbb9bc58f7dd9e7cf041a7ef7c8a0e57ef949961a6c2e6f00525033724b
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIE:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVS

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  3ce12ebd9b4cdcffbdcd88374d26d1faf90f9e3d78eb682bc0e7e420b4125fa5N
- Size
  
  55KB
- MD5
  
  fffc32f9757655c8824db3cab006d600
- SHA1
  
  44cfa80abcb6ea8640d2493f08b4f53d27b19a1f
- SHA256
  
  3ce12ebd9b4cdcffbdcd88374d26d1faf90f9e3d78eb682bc0e7e420b4125fa5
- SHA512
  
  5b11af9a35488660d7b30e1666e7e0269643ee5640001a7105699a561eaf27b809bc4cbb9bc58f7dd9e7cf041a7ef7c8a0e57ef949961a6c2e6f00525033724b
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIE:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVS
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence