573c552159d1c0c2514b968099a9ee1f1a4601f08590e6d1b7dd5f5df9705f5b | Triage

Sharing

General

Target

573c552159d1c0c2514b968099a9ee1f1a4601f08590e6d1b7dd5f5df9705f5bN.exe
Size

75KB
Sample

240925-3smbsaxfmc
MD5

f1049870df68efdccc97bded78f7a0e0
SHA1

c70277cd012001fe97cb4ffdc56bb9cc563bc49a
SHA256

573c552159d1c0c2514b968099a9ee1f1a4601f08590e6d1b7dd5f5df9705f5b
SHA512

71e1585c24fe02458fb31ecc18bdcb9114e1bee78faa59d5d04b5f7ca573185f787004731bf23a0d3c4b930e871afafb7b612a8cec50d0403ae98f761c6cb073
SSDEEP

1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN/qhAvP3OChhW4dI0h4HCIzhUvTx:xAo1lOwvlNlXBvsI7hrhEh9cpDN/qhA3

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  573c552159d1c0c2514b968099a9ee1f1a4601f08590e6d1b7dd5f5df9705f5bN.exe
- Size
  
  75KB
- MD5
  
  f1049870df68efdccc97bded78f7a0e0
- SHA1
  
  c70277cd012001fe97cb4ffdc56bb9cc563bc49a
- SHA256
  
  573c552159d1c0c2514b968099a9ee1f1a4601f08590e6d1b7dd5f5df9705f5b
- SHA512
  
  71e1585c24fe02458fb31ecc18bdcb9114e1bee78faa59d5d04b5f7ca573185f787004731bf23a0d3c4b930e871afafb7b612a8cec50d0403ae98f761c6cb073
- SSDEEP
  
  1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN/qhAvP3OChhW4dI0h4HCIzhUvTx:xAo1lOwvlNlXBvsI7hrhEh9cpDN/qhA3
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence