a81eb4d0dd87d3274148d1817111feed2eb61129250ae05dfd445e09422b036f | Triage

Sharing

General

Target

a81eb4d0dd87d3274148d1817111feed2eb61129250ae05dfd445e09422b036fN
Size

49KB
Sample

241002-jfkgwavapl
MD5

ee54b299c0b3ae1c08546920900df2b0
SHA1

624f3668fa51057694f25f72122949364e978854
SHA256

a81eb4d0dd87d3274148d1817111feed2eb61129250ae05dfd445e09422b036f
SHA512

1fe151b785842f0913a14e8585ba6f784f8b95dee6b8f81994568f154257ab645419c207fcc150f2f5ee42496d0aaf35ac100d8438acfe7946cdfcbdd2215e0b
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIE:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVi

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  a81eb4d0dd87d3274148d1817111feed2eb61129250ae05dfd445e09422b036fN
- Size
  
  49KB
- MD5
  
  ee54b299c0b3ae1c08546920900df2b0
- SHA1
  
  624f3668fa51057694f25f72122949364e978854
- SHA256
  
  a81eb4d0dd87d3274148d1817111feed2eb61129250ae05dfd445e09422b036f
- SHA512
  
  1fe151b785842f0913a14e8585ba6f784f8b95dee6b8f81994568f154257ab645419c207fcc150f2f5ee42496d0aaf35ac100d8438acfe7946cdfcbdd2215e0b
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIE:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVi
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence