b0ce40a4be35c125bc5d0f9f50dc5338181243327a4312ba3b875756ea27938c | Triage

Sharing

General

Target

b0ce40a4be35c125bc5d0f9f50dc5338181243327a4312ba3b875756ea27938cN
Size

47KB
Sample

240929-l8tx5ashke
MD5

31d5f2ccfd5ab59bf83bdc2225e6e6b0
SHA1

2755740ebfa5b9bcce7d878f4a3e36adb027f44b
SHA256

b0ce40a4be35c125bc5d0f9f50dc5338181243327a4312ba3b875756ea27938c
SHA512

b078202a57e41fd8a2ee5522419db92bb4503bab6c135a137a0e76a6b9c256ce9bc5078b2405683adebc86ade010b6c8a1abd4d96f41420443fc47a5efa15c0e
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhz:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYT

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  b0ce40a4be35c125bc5d0f9f50dc5338181243327a4312ba3b875756ea27938cN
- Size
  
  47KB
- MD5
  
  31d5f2ccfd5ab59bf83bdc2225e6e6b0
- SHA1
  
  2755740ebfa5b9bcce7d878f4a3e36adb027f44b
- SHA256
  
  b0ce40a4be35c125bc5d0f9f50dc5338181243327a4312ba3b875756ea27938c
- SHA512
  
  b078202a57e41fd8a2ee5522419db92bb4503bab6c135a137a0e76a6b9c256ce9bc5078b2405683adebc86ade010b6c8a1abd4d96f41420443fc47a5efa15c0e
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhz:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYT
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence