80a994b7fcd774352ecc7285a72f1622ce64354b8584def41746c6338e2784dc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

80a994b7fcd774352ecc7285a72f1622ce64354b8584def41746c6338e2784dcN
Size

180KB
Sample

241002-bc4gksyhjj
MD5

e895084ce071fce5f895bb78525acf20
SHA1

250654c4fd61c46530ea6f862330f17bf431ef90
SHA256

80a994b7fcd774352ecc7285a72f1622ce64354b8584def41746c6338e2784dc
SHA512

cb1ce74da11b15f1c57fe284bb445866e572787cddd7551595facbd9bd061ab2e1312b79a250dc606c2f7bc47bc7daa4c30b48e7bd162fe548cbde26df58d41a
SSDEEP

3072:jEGh0ovlfOso7ie+rcC4F0fJGRIS8Rfd7eQEcGcr:jEGBl5eKcAEc

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  80a994b7fcd774352ecc7285a72f1622ce64354b8584def41746c6338e2784dcN
- Size
  
  180KB
- MD5
  
  e895084ce071fce5f895bb78525acf20
- SHA1
  
  250654c4fd61c46530ea6f862330f17bf431ef90
- SHA256
  
  80a994b7fcd774352ecc7285a72f1622ce64354b8584def41746c6338e2784dc
- SHA512
  
  cb1ce74da11b15f1c57fe284bb445866e572787cddd7551595facbd9bd061ab2e1312b79a250dc606c2f7bc47bc7daa4c30b48e7bd162fe548cbde26df58d41a
- SSDEEP
  
  3072:jEGh0ovlfOso7ie+rcC4F0fJGRIS8Rfd7eQEcGcr:jEGBl5eKcAEc
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence