f641835bb0c26097036fdd515db28c71530810d090948793c811fdca6833cbea | Triage

Sharing

General

Target

f641835bb0c26097036fdd515db28c71530810d090948793c811fdca6833cbea
Size

39KB
Sample

240925-d8xp1sshrp
MD5

91e18d796b5cd2b1d45935b8ca9b9cc7
SHA1

201d7fc646077c11a1525d032e5ace57c7f6c42a
SHA256

f641835bb0c26097036fdd515db28c71530810d090948793c811fdca6833cbea
SHA512

34842a8bd365fa32298d54218a847b88bef6c5b472989988ae06539cc566a912b7acef8331b8e763348a68885520afdbd919485af2bdf3ad0d30689b9a9c2905
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6v8tvGE9UHrSdghj8bvHRIkhbUIchUh89:e6q10k0EFjed6rqJ+6v8tvGE9UHrSdgH

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  f641835bb0c26097036fdd515db28c71530810d090948793c811fdca6833cbea
- Size
  
  39KB
- MD5
  
  91e18d796b5cd2b1d45935b8ca9b9cc7
- SHA1
  
  201d7fc646077c11a1525d032e5ace57c7f6c42a
- SHA256
  
  f641835bb0c26097036fdd515db28c71530810d090948793c811fdca6833cbea
- SHA512
  
  34842a8bd365fa32298d54218a847b88bef6c5b472989988ae06539cc566a912b7acef8331b8e763348a68885520afdbd919485af2bdf3ad0d30689b9a9c2905
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6v8tvGE9UHrSdghj8bvHRIkhbUIchUh89:e6q10k0EFjed6rqJ+6v8tvGE9UHrSdgH
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence