202f168f1ed04a95380f5f3985d0b28df9c41369e010b859c52011fee4295ba8 | Triage

Sharing

General

Target

202f168f1ed04a95380f5f3985d0b28df9c41369e010b859c52011fee4295ba8N
Size

3.1MB
Sample

240921-hmmp5szcrb
MD5

39d743a6e9080e0f26f4fbf9ee06b460
SHA1

247b3fc2b04316c59c33283a3ea125cccb057035
SHA256

202f168f1ed04a95380f5f3985d0b28df9c41369e010b859c52011fee4295ba8
SHA512

1a5bc31d38c1ceaaaae463d6ed180008f1e24f7c25104ce5dc94083ee367b37039544167a99b885b686c34494218e002e555106115e2b0f791d1f423f52c5811
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LB09w4Su+LNfej:+R0pI/IQlUoMPdmpSpe4JkNfej

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  202f168f1ed04a95380f5f3985d0b28df9c41369e010b859c52011fee4295ba8N
- Size
  
  3.1MB
- MD5
  
  39d743a6e9080e0f26f4fbf9ee06b460
- SHA1
  
  247b3fc2b04316c59c33283a3ea125cccb057035
- SHA256
  
  202f168f1ed04a95380f5f3985d0b28df9c41369e010b859c52011fee4295ba8
- SHA512
  
  1a5bc31d38c1ceaaaae463d6ed180008f1e24f7c25104ce5dc94083ee367b37039544167a99b885b686c34494218e002e555106115e2b0f791d1f423f52c5811
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LB09w4Su+LNfej:+R0pI/IQlUoMPdmpSpe4JkNfej
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence