7b48e650bb33afc598ec1c81fbcc480a10e918b56e3b8ecb39bd3e88f4e85439 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7b48e650bb33afc598ec1c81fbcc480a10e918b56e3b8ecb39bd3e88f4e85439N
Size

61KB
Sample

240929-z6emba1dlp
MD5

6754ce1a6713e6c79340dbb66c697170
SHA1

51ae758ae86db290a3ec5f600295b54f69e5a479
SHA256

7b48e650bb33afc598ec1c81fbcc480a10e918b56e3b8ecb39bd3e88f4e85439
SHA512

4591308a0ce02b895797be0033e21e3772c155cb6bb9281a3a3142c855455518e987222d94732b62770c3b138868b53fce8156e83ef9cefd8376556a2778ea05
SSDEEP

1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjUvJQ/johlehvhFh9K:NAoglOwvl4ulkP6vghzwYu7vih9GueIq

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  7b48e650bb33afc598ec1c81fbcc480a10e918b56e3b8ecb39bd3e88f4e85439N
- Size
  
  61KB
- MD5
  
  6754ce1a6713e6c79340dbb66c697170
- SHA1
  
  51ae758ae86db290a3ec5f600295b54f69e5a479
- SHA256
  
  7b48e650bb33afc598ec1c81fbcc480a10e918b56e3b8ecb39bd3e88f4e85439
- SHA512
  
  4591308a0ce02b895797be0033e21e3772c155cb6bb9281a3a3142c855455518e987222d94732b62770c3b138868b53fce8156e83ef9cefd8376556a2778ea05
- SSDEEP
  
  1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjUvJQ/johlehvhFh9K:NAoglOwvl4ulkP6vghzwYu7vih9GueIq
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence