21f87b0119b20706c8fc3d108b65a561b40eaf7fb834f93297e04c048fe1a74f | Triage

Sharing

General

Target

21f87b0119b20706c8fc3d108b65a561b40eaf7fb834f93297e04c048fe1a74fN
Size

47KB
Sample

241005-vgtmqaxdml
MD5

7a75c8c7e98ba871b43e2e1e69d395d0
SHA1

448e883d60518194e8f5c0ed7a7026d9a20a066a
SHA256

21f87b0119b20706c8fc3d108b65a561b40eaf7fb834f93297e04c048fe1a74f
SHA512

2784eaa6a0c4ce4e79be9a914be0364730329d23a65fcacc08f49c58d747e110d3f2e61f92bea1420b95a7c7bb5bcd9c1ef403b600be5a826b7553791628bbc1
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhr:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYL

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  21f87b0119b20706c8fc3d108b65a561b40eaf7fb834f93297e04c048fe1a74fN
- Size
  
  47KB
- MD5
  
  7a75c8c7e98ba871b43e2e1e69d395d0
- SHA1
  
  448e883d60518194e8f5c0ed7a7026d9a20a066a
- SHA256
  
  21f87b0119b20706c8fc3d108b65a561b40eaf7fb834f93297e04c048fe1a74f
- SHA512
  
  2784eaa6a0c4ce4e79be9a914be0364730329d23a65fcacc08f49c58d747e110d3f2e61f92bea1420b95a7c7bb5bcd9c1ef403b600be5a826b7553791628bbc1
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhr:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYL
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence