355eee474f3a43e95b0939205160db5a616afa36d171303fd4450e781e6d0075 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

355eee474f3a43e95b0939205160db5a616afa36d171303fd4450e781e6d0075N
Size

58KB
Sample

241005-cybjcsvblh
MD5

86c8028c520c945cbe71593b8479d400
SHA1

a45903add442628bb813407713ca4563cc27e2f3
SHA256

355eee474f3a43e95b0939205160db5a616afa36d171303fd4450e781e6d0075
SHA512

9d41b150eb9fc29939f53f5952202f8339563f06eac7d8253c601c42ba2339e0be4516d009dc631455a1001812a075ea6640b174e15835cb4a04820590270b6a
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIu:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV8

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  355eee474f3a43e95b0939205160db5a616afa36d171303fd4450e781e6d0075N
- Size
  
  58KB
- MD5
  
  86c8028c520c945cbe71593b8479d400
- SHA1
  
  a45903add442628bb813407713ca4563cc27e2f3
- SHA256
  
  355eee474f3a43e95b0939205160db5a616afa36d171303fd4450e781e6d0075
- SHA512
  
  9d41b150eb9fc29939f53f5952202f8339563f06eac7d8253c601c42ba2339e0be4516d009dc631455a1001812a075ea6640b174e15835cb4a04820590270b6a
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIu:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV8
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence