6888f8274a9b116a2ef9b7bd8e985a72ed28a5589d3632c6a3275383c126b3e2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6888f8274a9b116a2ef9b7bd8e985a72ed28a5589d3632c6a3275383c126b3e2N
Size

52KB
Sample

240930-cbs5ws1hpm
MD5

ba6e7fc19e2601219f7defd63f4a0e00
SHA1

5dcf9ec38c619ad1998e09fff827bc869890f3db
SHA256

6888f8274a9b116a2ef9b7bd8e985a72ed28a5589d3632c6a3275383c126b3e2
SHA512

e4b6b79b871992d025e19782b4ff9aa285d503a0e2c8f533fffa748445aae5c936ad0a6efdde4a85ef8f84c4b8d7a656b3afaed552f26bb65f308a1c91db7bc6
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIl:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV7

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  6888f8274a9b116a2ef9b7bd8e985a72ed28a5589d3632c6a3275383c126b3e2N
- Size
  
  52KB
- MD5
  
  ba6e7fc19e2601219f7defd63f4a0e00
- SHA1
  
  5dcf9ec38c619ad1998e09fff827bc869890f3db
- SHA256
  
  6888f8274a9b116a2ef9b7bd8e985a72ed28a5589d3632c6a3275383c126b3e2
- SHA512
  
  e4b6b79b871992d025e19782b4ff9aa285d503a0e2c8f533fffa748445aae5c936ad0a6efdde4a85ef8f84c4b8d7a656b3afaed552f26bb65f308a1c91db7bc6
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIl:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV7
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence