cd1a48364e70d67dd789a3ea6ddc839ed61af407c3e2d44be06b099217276196 | Triage

Sharing

General

Target

cd1a48364e70d67dd789a3ea6ddc839ed61af407c3e2d44be06b099217276196N
Size

40KB
Sample

241003-k536ysvgrm
MD5

28754214242d2e0467a204d388b657a0
SHA1

665cd640283708e8f140b1d35f574a0d695875b5
SHA256

cd1a48364e70d67dd789a3ea6ddc839ed61af407c3e2d44be06b099217276196
SHA512

a9f60aae72bbe74cbcfa16126d0e2d817e5fbcdcc5ce8d599af4d8dc50e23999cb1c6c5e3f966afcfe87d88497b1f2237a51b11bba4e1990d460f389eeb7c26e
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJjWHm:e6q10k0EFjed6rqJ+6vghzwYu7vih9Gn

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  cd1a48364e70d67dd789a3ea6ddc839ed61af407c3e2d44be06b099217276196N
- Size
  
  40KB
- MD5
  
  28754214242d2e0467a204d388b657a0
- SHA1
  
  665cd640283708e8f140b1d35f574a0d695875b5
- SHA256
  
  cd1a48364e70d67dd789a3ea6ddc839ed61af407c3e2d44be06b099217276196
- SHA512
  
  a9f60aae72bbe74cbcfa16126d0e2d817e5fbcdcc5ce8d599af4d8dc50e23999cb1c6c5e3f966afcfe87d88497b1f2237a51b11bba4e1990d460f389eeb7c26e
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJjWHm:e6q10k0EFjed6rqJ+6vghzwYu7vih9Gn
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence