f2418373a1765cc6177956c5a9a34741e9ce0b26f2ac5fdbd361cc238e8c4240 | Triage

Sharing

General

Target

f2418373a1765cc6177956c5a9a34741e9ce0b26f2ac5fdbd361cc238e8c4240N
Size

50KB
Sample

240929-2jfxzatcrm
MD5

30782515ea9c2b68971cb43e8a2656a0
SHA1

d97f9f461bcd42a6a6266f3ffe1ea2592b5ec7d2
SHA256

f2418373a1765cc6177956c5a9a34741e9ce0b26f2ac5fdbd361cc238e8c4240
SHA512

b292639d33e64c7b20264844a16c03c63db9bb31c7e1b41248cdc8809c0d8bccf7a2b6190db3b0463e59eb4e4627cd85bf831fcb51d719af126943a01b2bb4d5
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIK:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV0

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  f2418373a1765cc6177956c5a9a34741e9ce0b26f2ac5fdbd361cc238e8c4240N
- Size
  
  50KB
- MD5
  
  30782515ea9c2b68971cb43e8a2656a0
- SHA1
  
  d97f9f461bcd42a6a6266f3ffe1ea2592b5ec7d2
- SHA256
  
  f2418373a1765cc6177956c5a9a34741e9ce0b26f2ac5fdbd361cc238e8c4240
- SHA512
  
  b292639d33e64c7b20264844a16c03c63db9bb31c7e1b41248cdc8809c0d8bccf7a2b6190db3b0463e59eb4e4627cd85bf831fcb51d719af126943a01b2bb4d5
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIK:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV0
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence