35a2c5330de423d57e937d62f91fcf9bdafa6c4c8b336920543073acb1b41e47 | Triage

Sharing

General

Target

35a2c5330de423d57e937d62f91fcf9bdafa6c4c8b336920543073acb1b41e47N
Size

80KB
Sample

241002-hm4zessepl
MD5

ff031dccc9627da1e43a714fc7d86cb0
SHA1

d41673a5aa35dbb1e7d9cb7a7912bae930644473
SHA256

35a2c5330de423d57e937d62f91fcf9bdafa6c4c8b336920543073acb1b41e47
SHA512

a10f91efa25cac0de4bff908fff13b5af09dfe75d839b00c4683483559dca158d38bbf2cf0eda38e744a5e1faddf79d08036c64c0ed671fbdd19555a39536627
SSDEEP

1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN/qhAvP3OInvnHvvxIfhqhcGoI/s:xAo1lOwvlNlXBvsI7hrhEh9cpDN/qhAs

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  35a2c5330de423d57e937d62f91fcf9bdafa6c4c8b336920543073acb1b41e47N
- Size
  
  80KB
- MD5
  
  ff031dccc9627da1e43a714fc7d86cb0
- SHA1
  
  d41673a5aa35dbb1e7d9cb7a7912bae930644473
- SHA256
  
  35a2c5330de423d57e937d62f91fcf9bdafa6c4c8b336920543073acb1b41e47
- SHA512
  
  a10f91efa25cac0de4bff908fff13b5af09dfe75d839b00c4683483559dca158d38bbf2cf0eda38e744a5e1faddf79d08036c64c0ed671fbdd19555a39536627
- SSDEEP
  
  1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN/qhAvP3OInvnHvvxIfhqhcGoI/s:xAo1lOwvlNlXBvsI7hrhEh9cpDN/qhAs
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence