968f02b25b9fb00621380794235aaa5bc1d643c296729eda59c9cd0da0d1a90c | Triage

Sharing

General

Target

968f02b25b9fb00621380794235aaa5bc1d643c296729eda59c9cd0da0d1a90cN
Size

58KB
Sample

241006-ma3caaydnl
MD5

ffa5f793e8b53527b5f8cd6f2ca82170
SHA1

487f8aa37d7fee87bdb9264449063e28e0ead70b
SHA256

968f02b25b9fb00621380794235aaa5bc1d643c296729eda59c9cd0da0d1a90c
SHA512

b53d468a7268bc85bb5674d2d1d3e2df166c5a1bc11facf5fadacbe9abd1b8b57858e768b4befef49df492c8a5aa1c0b40d251b315a20da4af7a97eab370b84c
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIf:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV5

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  968f02b25b9fb00621380794235aaa5bc1d643c296729eda59c9cd0da0d1a90cN
- Size
  
  58KB
- MD5
  
  ffa5f793e8b53527b5f8cd6f2ca82170
- SHA1
  
  487f8aa37d7fee87bdb9264449063e28e0ead70b
- SHA256
  
  968f02b25b9fb00621380794235aaa5bc1d643c296729eda59c9cd0da0d1a90c
- SHA512
  
  b53d468a7268bc85bb5674d2d1d3e2df166c5a1bc11facf5fadacbe9abd1b8b57858e768b4befef49df492c8a5aa1c0b40d251b315a20da4af7a97eab370b84c
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIf:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV5
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence