98eec6d581279eefa0467f3d0276da93a1c13638e4a32bad05745e2c720a6595 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98eec6d581279eefa0467f3d0276da93a1c13638e4a32bad05745e2c720a6595N.exe
Size

67KB
Sample

240925-rvxprateqf
MD5

9a78ad364ad46d86620dd99daedbd0f0
SHA1

c352ddca07687f31539b9314df86f5e57e564b76
SHA256

98eec6d581279eefa0467f3d0276da93a1c13638e4a32bad05745e2c720a6595
SHA512

29e740e0a2c054c7d82e2a4d44400c11d7d7acd50d84dd33fdb86ce1a08b9db32054c36afe70fe2654ea241a117bf6a9f1bc6749cd8d7ab05532849a5ae1f973
SSDEEP

1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjU+Eh6IbRJhHhLhIKw:NAoglOwvl4ulkP6vghzwYu7vih9GueIL

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  98eec6d581279eefa0467f3d0276da93a1c13638e4a32bad05745e2c720a6595N.exe
- Size
  
  67KB
- MD5
  
  9a78ad364ad46d86620dd99daedbd0f0
- SHA1
  
  c352ddca07687f31539b9314df86f5e57e564b76
- SHA256
  
  98eec6d581279eefa0467f3d0276da93a1c13638e4a32bad05745e2c720a6595
- SHA512
  
  29e740e0a2c054c7d82e2a4d44400c11d7d7acd50d84dd33fdb86ce1a08b9db32054c36afe70fe2654ea241a117bf6a9f1bc6749cd8d7ab05532849a5ae1f973
- SSDEEP
  
  1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjU+Eh6IbRJhHhLhIKw:NAoglOwvl4ulkP6vghzwYu7vih9GueIL
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence