c597f9025a9b2eec69c55d4a50fd10868262a28c3f74dbe59625e12b36a50403 | Triage

Sharing

General

Target

c597f9025a9b2eec69c55d4a50fd10868262a28c3f74dbe59625e12b36a50403N
Size

43KB
Sample

241004-vwpmba1apd
MD5

389dcb511ea4cf5e223f527138a048e0
SHA1

6755e1d6c161c474aa646a16f2ce35ab77052e2e
SHA256

c597f9025a9b2eec69c55d4a50fd10868262a28c3f74dbe59625e12b36a50403
SHA512

1125ae7223d6ef95afd7c2020b16a853de04338867700e4cb1b81d465df44762019fdea16407d106777cf769fffede94a6524e2815085812fa9ede1bfb969404
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAcBHUIFv:e6q10k0EFjed6rqJ+6vghzwYu7vih9GK

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  c597f9025a9b2eec69c55d4a50fd10868262a28c3f74dbe59625e12b36a50403N
- Size
  
  43KB
- MD5
  
  389dcb511ea4cf5e223f527138a048e0
- SHA1
  
  6755e1d6c161c474aa646a16f2ce35ab77052e2e
- SHA256
  
  c597f9025a9b2eec69c55d4a50fd10868262a28c3f74dbe59625e12b36a50403
- SHA512
  
  1125ae7223d6ef95afd7c2020b16a853de04338867700e4cb1b81d465df44762019fdea16407d106777cf769fffede94a6524e2815085812fa9ede1bfb969404
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAcBHUIFv:e6q10k0EFjed6rqJ+6vghzwYu7vih9GK
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence