b228ffb8c04e05003432e0a6687fd7c7473d2bd0ce4d6adabeba4235632b9b5e | Triage

Sharing

General

Target

b228ffb8c04e05003432e0a6687fd7c7473d2bd0ce4d6adabeba4235632b9b5eN.exe
Size

75KB
Sample

240925-qq36asxfqp
MD5

5fb6b6328f4fe4b274f5229efacf20f0
SHA1

32034abfd7e9b9ed66500d13edf52e583c06a7c4
SHA256

b228ffb8c04e05003432e0a6687fd7c7473d2bd0ce4d6adabeba4235632b9b5e
SHA512

d0a0760c5bd10f015ff2ac8ce4564a5446efe254e332413f34d633f2c038c2f7805eb0041e8d71a55dfdbe95fb8ea03ff31e2cfc56fd5078d868590d04523366
SSDEEP

1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN43vBKMvWPqH5kYhpvEHchVvhES0:xAo1lOwvlNlXBvsI7hrhEh9cpDN43vBM

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  b228ffb8c04e05003432e0a6687fd7c7473d2bd0ce4d6adabeba4235632b9b5eN.exe
- Size
  
  75KB
- MD5
  
  5fb6b6328f4fe4b274f5229efacf20f0
- SHA1
  
  32034abfd7e9b9ed66500d13edf52e583c06a7c4
- SHA256
  
  b228ffb8c04e05003432e0a6687fd7c7473d2bd0ce4d6adabeba4235632b9b5e
- SHA512
  
  d0a0760c5bd10f015ff2ac8ce4564a5446efe254e332413f34d633f2c038c2f7805eb0041e8d71a55dfdbe95fb8ea03ff31e2cfc56fd5078d868590d04523366
- SSDEEP
  
  1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN43vBKMvWPqH5kYhpvEHchVvhES0:xAo1lOwvlNlXBvsI7hrhEh9cpDN43vBM
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence