d0356cabe9bbf3e47ba8077125cb692df3e9764b20e16dc32e2ab4d26cfa0144 | Triage

Sharing

General

Target

d0356cabe9bbf3e47ba8077125cb692df3e9764b20e16dc32e2ab4d26cfa0144N
Size

41KB
Sample

240930-tn781sybna
MD5

c043badc2e0090561ca8e335950c6fe0
SHA1

306ca84f71d8ad0c1efe44ca94559d84f5b8822e
SHA256

d0356cabe9bbf3e47ba8077125cb692df3e9764b20e16dc32e2ab4d26cfa0144
SHA512

f3e47d0526cb90723a02e362c8da5721e4c5f811183a1baf65805f4d3889716fb21f7a0e3384dca73268e19d0e90accce0d3d61ac4ae206a5660dc007d4e0009
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+Eh6I+:e6q10k0EFjed6rqJ+6vghzwYu7vih9Ga

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  d0356cabe9bbf3e47ba8077125cb692df3e9764b20e16dc32e2ab4d26cfa0144N
- Size
  
  41KB
- MD5
  
  c043badc2e0090561ca8e335950c6fe0
- SHA1
  
  306ca84f71d8ad0c1efe44ca94559d84f5b8822e
- SHA256
  
  d0356cabe9bbf3e47ba8077125cb692df3e9764b20e16dc32e2ab4d26cfa0144
- SHA512
  
  f3e47d0526cb90723a02e362c8da5721e4c5f811183a1baf65805f4d3889716fb21f7a0e3384dca73268e19d0e90accce0d3d61ac4ae206a5660dc007d4e0009
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+Eh6I+:e6q10k0EFjed6rqJ+6vghzwYu7vih9Ga
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence