d853a414f6b3c3ba88f5f49cc618c8d924569f7f90d1f7a724d9723919c868a5 | Triage

Sharing

General

Target

d853a414f6b3c3ba88f5f49cc618c8d924569f7f90d1f7a724d9723919c868a5N
Size

77KB
Sample

241009-cqj6jatarr
MD5

b4b5b2a3a9f4f1e4e4e0632736be76c0
SHA1

a3816925f60fa6ea021423fb6083b1a3b052ab03
SHA256

d853a414f6b3c3ba88f5f49cc618c8d924569f7f90d1f7a724d9723919c868a5
SHA512

fcbc0dc57f7a210c1015ca0b09ed70e45471a453fd3b11f4f0f8b358cc8f72290a87daf3531defa0a7c916c6b5953d5a575ec142900774b08b284c49840695d5
SSDEEP

1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN/qhAvP3OInvnHvvxIfhqhcGoI/n:xAo1lOwvlNlXBvsI7hrhEh9cpDN/qhAn

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  d853a414f6b3c3ba88f5f49cc618c8d924569f7f90d1f7a724d9723919c868a5N
- Size
  
  77KB
- MD5
  
  b4b5b2a3a9f4f1e4e4e0632736be76c0
- SHA1
  
  a3816925f60fa6ea021423fb6083b1a3b052ab03
- SHA256
  
  d853a414f6b3c3ba88f5f49cc618c8d924569f7f90d1f7a724d9723919c868a5
- SHA512
  
  fcbc0dc57f7a210c1015ca0b09ed70e45471a453fd3b11f4f0f8b358cc8f72290a87daf3531defa0a7c916c6b5953d5a575ec142900774b08b284c49840695d5
- SSDEEP
  
  1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN/qhAvP3OInvnHvvxIfhqhcGoI/n:xAo1lOwvlNlXBvsI7hrhEh9cpDN/qhAn
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence