2273126c123a20a5f49294548aa36e9ed35fc1d26eb0bc742387b1215e65c1a4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2273126c123a20a5f49294548aa36e9ed35fc1d26eb0bc742387b1215e65c1a4N
Size

44KB
Sample

240930-lcf2dssbke
MD5

56bc7d9cd7d662e60f31b255794dc420
SHA1

dde6117d1117581d5ffb154615f18d203723d867
SHA256

2273126c123a20a5f49294548aa36e9ed35fc1d26eb0bc742387b1215e65c1a4
SHA512

678c71f7e978aaf56b76d44130fd8469ca4a926f6c2f890a0c64e1c0fb3a34bb612df30145611a8aa343d571d30c0b06475ee8d69023813ae64b70b703f5c075
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhN:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYt

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  2273126c123a20a5f49294548aa36e9ed35fc1d26eb0bc742387b1215e65c1a4N
- Size
  
  44KB
- MD5
  
  56bc7d9cd7d662e60f31b255794dc420
- SHA1
  
  dde6117d1117581d5ffb154615f18d203723d867
- SHA256
  
  2273126c123a20a5f49294548aa36e9ed35fc1d26eb0bc742387b1215e65c1a4
- SHA512
  
  678c71f7e978aaf56b76d44130fd8469ca4a926f6c2f890a0c64e1c0fb3a34bb612df30145611a8aa343d571d30c0b06475ee8d69023813ae64b70b703f5c075
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhN:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYt
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence