4c113b6371675940791470769767540c5fdec562651020ea39569b0e19a5d435 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c113b6371675940791470769767540c5fdec562651020ea39569b0e19a5d435N
Size

63KB
Sample

241004-aky2dsxhmf
MD5

dc2682f7f727b35932ab58fdd2569ab0
SHA1

03cfd02dcc1031e089da56cb6e4ea6395dc0d357
SHA256

4c113b6371675940791470769767540c5fdec562651020ea39569b0e19a5d435
SHA512

2c3d2ca72312d26439dddf3184ddd24333e9be6883d50d3bc689685000d69f243af900aae50237e5cc9cffd825b42306fafb7a3d8304377927fa198c109609f4
SSDEEP

1536:lAo0ej2d6rnJwwvlKlIUBP6vghzwYu7vih9GueIh9j2IoHAjU+EmkcU+uZd7ZYhH:lAo1lOwvlKlXBP6vghzwYu7vih9GueIV

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  4c113b6371675940791470769767540c5fdec562651020ea39569b0e19a5d435N
- Size
  
  63KB
- MD5
  
  dc2682f7f727b35932ab58fdd2569ab0
- SHA1
  
  03cfd02dcc1031e089da56cb6e4ea6395dc0d357
- SHA256
  
  4c113b6371675940791470769767540c5fdec562651020ea39569b0e19a5d435
- SHA512
  
  2c3d2ca72312d26439dddf3184ddd24333e9be6883d50d3bc689685000d69f243af900aae50237e5cc9cffd825b42306fafb7a3d8304377927fa198c109609f4
- SSDEEP
  
  1536:lAo0ej2d6rnJwwvlKlIUBP6vghzwYu7vih9GueIh9j2IoHAjU+EmkcU+uZd7ZYhH:lAo1lOwvlKlXBP6vghzwYu7vih9GueIV
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence