189dd6a3b9ae0902c653782ff88f0ed16abecb52ded6759f334f3e6606d00bf7 | Triage

Sharing

General

Target

189dd6a3b9ae0902c653782ff88f0ed16abecb52ded6759f334f3e6606d00bf7
Size

61KB
Sample

240929-xpqxxawepk
MD5

09ead8a0c66d0a0bc9f25be887a5cfb3
SHA1

719da436db4865925c5648568b3f97919c5545c7
SHA256

189dd6a3b9ae0902c653782ff88f0ed16abecb52ded6759f334f3e6606d00bf7
SHA512

bfca3afe495f23b026d2ae3a7e3999b5224a839062a0fd359d768526beaf1db18a1ac37acd3dc556bc710fb34536c0343dc45e8fc7e35cf5bf271609e2b4868c
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIP:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVx

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  189dd6a3b9ae0902c653782ff88f0ed16abecb52ded6759f334f3e6606d00bf7
- Size
  
  61KB
- MD5
  
  09ead8a0c66d0a0bc9f25be887a5cfb3
- SHA1
  
  719da436db4865925c5648568b3f97919c5545c7
- SHA256
  
  189dd6a3b9ae0902c653782ff88f0ed16abecb52ded6759f334f3e6606d00bf7
- SHA512
  
  bfca3afe495f23b026d2ae3a7e3999b5224a839062a0fd359d768526beaf1db18a1ac37acd3dc556bc710fb34536c0343dc45e8fc7e35cf5bf271609e2b4868c
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIP:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVx
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence