e17ac9d144cfe524fa4723399bd325279eb3d34d7bbd826f67f026d10856a6a8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e17ac9d144cfe524fa4723399bd325279eb3d34d7bbd826f67f026d10856a6a8N
Size

58KB
Sample

241005-pnxeasshpr
MD5

fe76bc2e45f7689fa0145bdbd8477f20
SHA1

c2a3422aad4952ef70ef3fc50d92a40ee51435b6
SHA256

e17ac9d144cfe524fa4723399bd325279eb3d34d7bbd826f67f026d10856a6a8
SHA512

9935ad06f70a241c8a59151eb7c4846d47b0dc56c3c62c762c5044196f39a35b2a93b862d5ce246c245d98e06cd5e46781d079258ea2615fb0f79f43367bf6b0
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIq:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e17ac9d144cfe524fa4723399bd325279eb3d34d7bbd826f67f026d10856a6a8N
- Size
  
  58KB
- MD5
  
  fe76bc2e45f7689fa0145bdbd8477f20
- SHA1
  
  c2a3422aad4952ef70ef3fc50d92a40ee51435b6
- SHA256
  
  e17ac9d144cfe524fa4723399bd325279eb3d34d7bbd826f67f026d10856a6a8
- SHA512
  
  9935ad06f70a241c8a59151eb7c4846d47b0dc56c3c62c762c5044196f39a35b2a93b862d5ce246c245d98e06cd5e46781d079258ea2615fb0f79f43367bf6b0
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIq:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence