5fd311ff85cbc6fdde41a2b5e7c371fda663ce380731b8521400e3f050df7f70 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5fd311ff85cbc6fdde41a2b5e7c371fda663ce380731b8521400e3f050df7f70
Size

63KB
Sample

241008-2ajbqsshkl
MD5

9221be5434e7d597089c050bca3cb66e
SHA1

084ffc48bc92e7eeaa85b11814d93adf7a0b3181
SHA256

5fd311ff85cbc6fdde41a2b5e7c371fda663ce380731b8521400e3f050df7f70
SHA512

a4ffb2fbbb94e9927dc4529e11c3750ac755d8b3a6a436380db580c31fe3b4775108c9f2048b5e8c9e72efde3e3ae2a6fd47d8361ac22b506bc8d01c6ecf4e75
SSDEEP

1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjU+Eh6IbIKv8hDhWhE:NAoglOwvl4ulkP6vghzwYu7vih9GueIx

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  5fd311ff85cbc6fdde41a2b5e7c371fda663ce380731b8521400e3f050df7f70
- Size
  
  63KB
- MD5
  
  9221be5434e7d597089c050bca3cb66e
- SHA1
  
  084ffc48bc92e7eeaa85b11814d93adf7a0b3181
- SHA256
  
  5fd311ff85cbc6fdde41a2b5e7c371fda663ce380731b8521400e3f050df7f70
- SHA512
  
  a4ffb2fbbb94e9927dc4529e11c3750ac755d8b3a6a436380db580c31fe3b4775108c9f2048b5e8c9e72efde3e3ae2a6fd47d8361ac22b506bc8d01c6ecf4e75
- SSDEEP
  
  1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjU+Eh6IbIKv8hDhWhE:NAoglOwvl4ulkP6vghzwYu7vih9GueIx
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence