dc140b9b45d2873a7e75dfd8ff323208aedb46b1f5e870f1d8b26a8535cbf046 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc140b9b45d2873a7e75dfd8ff323208aedb46b1f5e870f1d8b26a8535cbf046
Size

43KB
Sample

240925-c6r63szgnr
MD5

29dfbf53f3669e186999bf9e8fad933f
SHA1

18038b65ec75fbfe797c6f5cd7077a79fbfd2b8a
SHA256

dc140b9b45d2873a7e75dfd8ff323208aedb46b1f5e870f1d8b26a8535cbf046
SHA512

f851a4efb2393b31006de4b74148533b8867cc5b1d30a95ef94e29e2c501b0d6bee23d4be04a6c140fbac0bdf18e4991c6246191af552acb20a790fa8da85c5b
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAcBHUIFvS:e6q10k0EFjed6rqJ+6vghzwYu7vih9GE

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  dc140b9b45d2873a7e75dfd8ff323208aedb46b1f5e870f1d8b26a8535cbf046
- Size
  
  43KB
- MD5
  
  29dfbf53f3669e186999bf9e8fad933f
- SHA1
  
  18038b65ec75fbfe797c6f5cd7077a79fbfd2b8a
- SHA256
  
  dc140b9b45d2873a7e75dfd8ff323208aedb46b1f5e870f1d8b26a8535cbf046
- SHA512
  
  f851a4efb2393b31006de4b74148533b8867cc5b1d30a95ef94e29e2c501b0d6bee23d4be04a6c140fbac0bdf18e4991c6246191af552acb20a790fa8da85c5b
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAcBHUIFvS:e6q10k0EFjed6rqJ+6vghzwYu7vih9GE
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence