16cb8c5ed7a9119b33709427adf6b0486b05e4fc8ef513f378a9d0d8b5f81314 | Triage

Sharing

General

Target

16cb8c5ed7a9119b33709427adf6b0486b05e4fc8ef513f378a9d0d8b5f81314N
Size

41KB
Sample

241001-pbc5wssepd
MD5

09531bce8ada3a8b27293c0fe0d93dc0
SHA1

8c52e902e915ffcddb21c4e951326d838c2d0541
SHA256

16cb8c5ed7a9119b33709427adf6b0486b05e4fc8ef513f378a9d0d8b5f81314
SHA512

d9e504ffd1af6b2223370155fa1eb838d7520af7b3eabb66c00f4b4b4a068b435eeb6503a91e509d89271fb631df0aa98703516b230686e3e73484626eadb4fd
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+Emkc7:e6q10k0EFjed6rqJ+6vghzwYu7vih9G6

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  16cb8c5ed7a9119b33709427adf6b0486b05e4fc8ef513f378a9d0d8b5f81314N
- Size
  
  41KB
- MD5
  
  09531bce8ada3a8b27293c0fe0d93dc0
- SHA1
  
  8c52e902e915ffcddb21c4e951326d838c2d0541
- SHA256
  
  16cb8c5ed7a9119b33709427adf6b0486b05e4fc8ef513f378a9d0d8b5f81314
- SHA512
  
  d9e504ffd1af6b2223370155fa1eb838d7520af7b3eabb66c00f4b4b4a068b435eeb6503a91e509d89271fb631df0aa98703516b230686e3e73484626eadb4fd
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+Emkc7:e6q10k0EFjed6rqJ+6vghzwYu7vih9G6
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence