38e502b8812b286628c82cbf1a5b75ccd97f95eab8f926bd7aa52a8d4f3f48a2 | Triage

Sharing

General

Target

38e502b8812b286628c82cbf1a5b75ccd97f95eab8f926bd7aa52a8d4f3f48a2N
Size

47KB
Sample

240929-1x59cawfmg
MD5

ce398ce8e1ab3f8c51d3b1c0d5a93650
SHA1

d2961a67d780f4838a7d40182aaf9779d14a81cd
SHA256

38e502b8812b286628c82cbf1a5b75ccd97f95eab8f926bd7aa52a8d4f3f48a2
SHA512

fcf77afef887c158b5863181f51187ee7b4b3fb5d050e438fad146e2462adb95f556fd795fedab3c0032268b0d0d50a38e7b53853a727d14a5234a2dfebb2b61
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhf:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wY/

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  38e502b8812b286628c82cbf1a5b75ccd97f95eab8f926bd7aa52a8d4f3f48a2N
- Size
  
  47KB
- MD5
  
  ce398ce8e1ab3f8c51d3b1c0d5a93650
- SHA1
  
  d2961a67d780f4838a7d40182aaf9779d14a81cd
- SHA256
  
  38e502b8812b286628c82cbf1a5b75ccd97f95eab8f926bd7aa52a8d4f3f48a2
- SHA512
  
  fcf77afef887c158b5863181f51187ee7b4b3fb5d050e438fad146e2462adb95f556fd795fedab3c0032268b0d0d50a38e7b53853a727d14a5234a2dfebb2b61
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhf:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wY/
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence