4ec716b786eb1d65a47bb1999cbca957fbb650b9e8ebde6dc7da6ca5bce1c4a8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4ec716b786eb1d65a47bb1999cbca957fbb650b9e8ebde6dc7da6ca5bce1c4a8N
Size

35KB
Sample

240929-k1zb7szeqb
MD5

df2dcbf73a557c39413540f978ac4300
SHA1

965b3c93f58973e863c626f8896ef219276d29e6
SHA256

4ec716b786eb1d65a47bb1999cbca957fbb650b9e8ebde6dc7da6ca5bce1c4a8
SHA512

fd1ee2b32c5333bedce012e38eec7b5786b5271c6db2c56d1edbc47ac53ee2fc0fb67dd70ba5caed0ae936a66db6fc9b2096394bb13b0dc3336b0a52f9666063
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJw3/Z:e6q10k0EFjed6rqJ+6vghzwYu7vih9Gy

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  4ec716b786eb1d65a47bb1999cbca957fbb650b9e8ebde6dc7da6ca5bce1c4a8N
- Size
  
  35KB
- MD5
  
  df2dcbf73a557c39413540f978ac4300
- SHA1
  
  965b3c93f58973e863c626f8896ef219276d29e6
- SHA256
  
  4ec716b786eb1d65a47bb1999cbca957fbb650b9e8ebde6dc7da6ca5bce1c4a8
- SHA512
  
  fd1ee2b32c5333bedce012e38eec7b5786b5271c6db2c56d1edbc47ac53ee2fc0fb67dd70ba5caed0ae936a66db6fc9b2096394bb13b0dc3336b0a52f9666063
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJw3/Z:e6q10k0EFjed6rqJ+6vghzwYu7vih9Gy
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence