5e84639f1b96460c0217e7b5da5f6918cd7f23427aae7ed97abac9250e5cce6f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5e84639f1b96460c0217e7b5da5f6918cd7f23427aae7ed97abac9250e5cce6fN
Size

42KB
Sample

241002-syqlaaxdqd
MD5

39414dc3752f2a5b65872ad0b7ba0f80
SHA1

8aa3426f757fcc00efca6735d33f2e3ca91e1469
SHA256

5e84639f1b96460c0217e7b5da5f6918cd7f23427aae7ed97abac9250e5cce6f
SHA512

ee617fb50ff1f5b5f7b4de74b919b3f866a9ee06feff17b7c5825d634bf51847f366c31313c075ac2d3d6a184c7a9a89de45f3d9a13828e5c51efdf5edd07fa4
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJjWHp:e6q10k0EFjed6rqJ+6vghzwYu7vih9G

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  5e84639f1b96460c0217e7b5da5f6918cd7f23427aae7ed97abac9250e5cce6fN
- Size
  
  42KB
- MD5
  
  39414dc3752f2a5b65872ad0b7ba0f80
- SHA1
  
  8aa3426f757fcc00efca6735d33f2e3ca91e1469
- SHA256
  
  5e84639f1b96460c0217e7b5da5f6918cd7f23427aae7ed97abac9250e5cce6f
- SHA512
  
  ee617fb50ff1f5b5f7b4de74b919b3f866a9ee06feff17b7c5825d634bf51847f366c31313c075ac2d3d6a184c7a9a89de45f3d9a13828e5c51efdf5edd07fa4
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJjWHp:e6q10k0EFjed6rqJ+6vghzwYu7vih9G
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence