658817b03e227ee13d4505755a30c1dd4c10670c0fe1719bd951d5676634a837 | Triage

Sharing

General

Target

658817b03e227ee13d4505755a30c1dd4c10670c0fe1719bd951d5676634a837
Size

43KB
Sample

241008-2k5ygsycpg
MD5

42cd6c72061aee39ac64846122b91996
SHA1

fc177a65882946f74722b63c93bae4013449ecfd
SHA256

658817b03e227ee13d4505755a30c1dd4c10670c0fe1719bd951d5676634a837
SHA512

96b873c5def3546ad5803693b12225a7914b54a31a734f4a161178c2da374a612e67cf19bb5eb4166f5de373a75655ca77a57a77ffdbb7aecb198449749b0bb3
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhw:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYQ

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  658817b03e227ee13d4505755a30c1dd4c10670c0fe1719bd951d5676634a837
- Size
  
  43KB
- MD5
  
  42cd6c72061aee39ac64846122b91996
- SHA1
  
  fc177a65882946f74722b63c93bae4013449ecfd
- SHA256
  
  658817b03e227ee13d4505755a30c1dd4c10670c0fe1719bd951d5676634a837
- SHA512
  
  96b873c5def3546ad5803693b12225a7914b54a31a734f4a161178c2da374a612e67cf19bb5eb4166f5de373a75655ca77a57a77ffdbb7aecb198449749b0bb3
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhw:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYQ
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence