2aab413601852769706ed5c885e84452080e733772007068cf5283ce49c2a0b0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2aab413601852769706ed5c885e84452080e733772007068cf5283ce49c2a0b0
Size

45KB
Sample

240921-x6w59aygkc
MD5

a543273abe663a612b02b4b476c78b4f
SHA1

241f7c1a484532e5cb8eeb5a95067d89897e0636
SHA256

2aab413601852769706ed5c885e84452080e733772007068cf5283ce49c2a0b0
SHA512

9fb87ff370ce35c42548cbfc824c887dfd4cb8b6b1a3caca8e6c9a706e4719f8a685bcfaf40e2e5c8e1ad494642d4b03771cd21707d93a329a84239407193a5e
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhx:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYR

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  2aab413601852769706ed5c885e84452080e733772007068cf5283ce49c2a0b0
- Size
  
  45KB
- MD5
  
  a543273abe663a612b02b4b476c78b4f
- SHA1
  
  241f7c1a484532e5cb8eeb5a95067d89897e0636
- SHA256
  
  2aab413601852769706ed5c885e84452080e733772007068cf5283ce49c2a0b0
- SHA512
  
  9fb87ff370ce35c42548cbfc824c887dfd4cb8b6b1a3caca8e6c9a706e4719f8a685bcfaf40e2e5c8e1ad494642d4b03771cd21707d93a329a84239407193a5e
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhx:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYR
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence