99d6ccd0d1cfa6a98890d1b3fa1ee538cfe68fa718c55c142c85075e5aa3c923 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

99d6ccd0d1cfa6a98890d1b3fa1ee538cfe68fa718c55c142c85075e5aa3c923N
Size

38KB
Sample

241001-jjpwrsscmb
MD5

6e34f56b12a43a514dd773ad737dc6b0
SHA1

1956e20af1f0e97a0cb3415b1722c8decf72ac66
SHA256

99d6ccd0d1cfa6a98890d1b3fa1ee538cfe68fa718c55c142c85075e5aa3c923
SHA512

7aaf6b7fcbfc41eeb37a5fd6ed31f47d460c8bff6ae810e3de88e84be7553598a57b87c3741d1cb964577f2253c741a907ece3872738c44733cbc67859ccb0ec
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+EmkcI:e6q10k0EFjed6rqJ+6vghzwYu7vih9Gp

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  99d6ccd0d1cfa6a98890d1b3fa1ee538cfe68fa718c55c142c85075e5aa3c923N
- Size
  
  38KB
- MD5
  
  6e34f56b12a43a514dd773ad737dc6b0
- SHA1
  
  1956e20af1f0e97a0cb3415b1722c8decf72ac66
- SHA256
  
  99d6ccd0d1cfa6a98890d1b3fa1ee538cfe68fa718c55c142c85075e5aa3c923
- SHA512
  
  7aaf6b7fcbfc41eeb37a5fd6ed31f47d460c8bff6ae810e3de88e84be7553598a57b87c3741d1cb964577f2253c741a907ece3872738c44733cbc67859ccb0ec
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+EmkcI:e6q10k0EFjed6rqJ+6vghzwYu7vih9Gp
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence