b1313e2a8e6e05bc55df99f451756296c737f084c8e4c0e021b49b4f83cf6ea0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b1313e2a8e6e05bc55df99f451756296c737f084c8e4c0e021b49b4f83cf6ea0N
Size

69KB
Sample

240927-frrtjszbpg
MD5

8a2086fa5f815d01a59e0a5b60fec070
SHA1

50eb1c457419500ae04b2e4c0973b105e41cbe8c
SHA256

b1313e2a8e6e05bc55df99f451756296c737f084c8e4c0e021b49b4f83cf6ea0
SHA512

95d9abc3a9a3076ea5c4ded1b2c6bd7549645c52b3a77c426628e7181d0e7c367f2aa7f7332bedac54713862ba787cd6a60015a5a941b89395661540b35d44bc
SSDEEP

1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAcBHUIF2kvEHrH1hyh7:NAoglOwvl4ulkP6vghzwYu7vih9GueII

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  b1313e2a8e6e05bc55df99f451756296c737f084c8e4c0e021b49b4f83cf6ea0N
- Size
  
  69KB
- MD5
  
  8a2086fa5f815d01a59e0a5b60fec070
- SHA1
  
  50eb1c457419500ae04b2e4c0973b105e41cbe8c
- SHA256
  
  b1313e2a8e6e05bc55df99f451756296c737f084c8e4c0e021b49b4f83cf6ea0
- SHA512
  
  95d9abc3a9a3076ea5c4ded1b2c6bd7549645c52b3a77c426628e7181d0e7c367f2aa7f7332bedac54713862ba787cd6a60015a5a941b89395661540b35d44bc
- SSDEEP
  
  1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAcBHUIF2kvEHrH1hyh7:NAoglOwvl4ulkP6vghzwYu7vih9GueII
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence