ef2d6ddd1ffd26883322d509dfa553261940c07ee988b373a3ce60be42891b8f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef2d6ddd1ffd26883322d509dfa553261940c07ee988b373a3ce60be42891b8fN
Size

75KB
Sample

241005-vxyavasekc
MD5

01f0bafb44350b69e99eb52c238d3e90
SHA1

0433d105c394651abaaba70725c2ccd14771931c
SHA256

ef2d6ddd1ffd26883322d509dfa553261940c07ee988b373a3ce60be42891b8f
SHA512

74dacfa6710a4467fe2088311d7f4049e303d53ca23d01879a8a3f99cb1c516c3364c77ea45d54a364c3bc9dcf71149f9edc37ceaac3721ef6fe8ab984b5869b
SSDEEP

1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN/qhAvP3OInvnHvvxIfhqhcGoI/e:xAo1lOwvlNlXBvsI7hrhEh9cpDN/qhAe

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ef2d6ddd1ffd26883322d509dfa553261940c07ee988b373a3ce60be42891b8fN
- Size
  
  75KB
- MD5
  
  01f0bafb44350b69e99eb52c238d3e90
- SHA1
  
  0433d105c394651abaaba70725c2ccd14771931c
- SHA256
  
  ef2d6ddd1ffd26883322d509dfa553261940c07ee988b373a3ce60be42891b8f
- SHA512
  
  74dacfa6710a4467fe2088311d7f4049e303d53ca23d01879a8a3f99cb1c516c3364c77ea45d54a364c3bc9dcf71149f9edc37ceaac3721ef6fe8ab984b5869b
- SSDEEP
  
  1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN/qhAvP3OInvnHvvxIfhqhcGoI/e:xAo1lOwvlNlXBvsI7hrhEh9cpDN/qhAe
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence