297b7021222454be9d07ca572cfbe6e10e9787701a0a243d0680c0cde36723ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

297b7021222454be9d07ca572cfbe6e10e9787701a0a243d0680c0cde36723aeN
Size

65KB
Sample

240927-sw27as1gpb
MD5

5a4a7270575b05383c08da6924c92b10
SHA1

d6835338836d091683f42d6f0af09c55a0ed0753
SHA256

297b7021222454be9d07ca572cfbe6e10e9787701a0a243d0680c0cde36723ae
SHA512

d9e12af564d09e7aaf82d6a93e887d90453c05346bc213a7f13a7f1ebc0eccc7e73e21dfabd30e7b91ab85be739e5444bd3d3c7e606ed89b440ec6556207d2f3
SSDEEP

1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAcBHUIF2kvEHrGhVhoZ:NAoglOwvl4ulkP6vghzwYu7vih9GueIZ

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  297b7021222454be9d07ca572cfbe6e10e9787701a0a243d0680c0cde36723aeN
- Size
  
  65KB
- MD5
  
  5a4a7270575b05383c08da6924c92b10
- SHA1
  
  d6835338836d091683f42d6f0af09c55a0ed0753
- SHA256
  
  297b7021222454be9d07ca572cfbe6e10e9787701a0a243d0680c0cde36723ae
- SHA512
  
  d9e12af564d09e7aaf82d6a93e887d90453c05346bc213a7f13a7f1ebc0eccc7e73e21dfabd30e7b91ab85be739e5444bd3d3c7e606ed89b440ec6556207d2f3
- SSDEEP
  
  1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAcBHUIF2kvEHrGhVhoZ:NAoglOwvl4ulkP6vghzwYu7vih9GueIZ
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence