ed859ffd65df2292c8093c1d282f032257a1ef18f4c1c94a246e50ef963d1a8f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed859ffd65df2292c8093c1d282f032257a1ef18f4c1c94a246e50ef963d1a8f
Size

53KB
Sample

240928-dyx8ssxbqh
MD5

8c98aa9f78eccff0e8fe63a8c6e45c7d
SHA1

4745f36e7723474f694b666c56aae313a4cc1a31
SHA256

ed859ffd65df2292c8093c1d282f032257a1ef18f4c1c94a246e50ef963d1a8f
SHA512

52b8c17fb9dfec03b46f9c97c11adae664813676a5544e615b032f16b5a134985e983b196b0c0d0923b1f9ab8dab40d95a99d7b81eea63d08aa7ddeb24a182dd
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhI6:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV4

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ed859ffd65df2292c8093c1d282f032257a1ef18f4c1c94a246e50ef963d1a8f
- Size
  
  53KB
- MD5
  
  8c98aa9f78eccff0e8fe63a8c6e45c7d
- SHA1
  
  4745f36e7723474f694b666c56aae313a4cc1a31
- SHA256
  
  ed859ffd65df2292c8093c1d282f032257a1ef18f4c1c94a246e50ef963d1a8f
- SHA512
  
  52b8c17fb9dfec03b46f9c97c11adae664813676a5544e615b032f16b5a134985e983b196b0c0d0923b1f9ab8dab40d95a99d7b81eea63d08aa7ddeb24a182dd
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhI6:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV4
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence