49f94189288ffa409388e0e62ccb057da9fa051254d2e2765810908ba8b03688 | Triage

Sharing

General

Target

49f94189288ffa409388e0e62ccb057da9fa051254d2e2765810908ba8b03688N
Size

68KB
Sample

241009-kkgr8azdkr
MD5

34144c5c9cfbcc9b67cf29d4dde034c0
SHA1

a2fefe70ce00a3ff347ece28aeb03c67e78d82c9
SHA256

49f94189288ffa409388e0e62ccb057da9fa051254d2e2765810908ba8b03688
SHA512

7af85e6f9ca3cb178b987fa82e1c98f5d3e35b4d5da6e8c4738912bb3557a0d508df1daccc894b48f866c7a3f4982a6f0ec52c2728ca33d408bfe339a0e43629
SSDEEP

1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjU+Eh6IbIKv8H8hpQc:NAoglOwvl4ulkP6vghzwYu7vih9GueIq

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  49f94189288ffa409388e0e62ccb057da9fa051254d2e2765810908ba8b03688N
- Size
  
  68KB
- MD5
  
  34144c5c9cfbcc9b67cf29d4dde034c0
- SHA1
  
  a2fefe70ce00a3ff347ece28aeb03c67e78d82c9
- SHA256
  
  49f94189288ffa409388e0e62ccb057da9fa051254d2e2765810908ba8b03688
- SHA512
  
  7af85e6f9ca3cb178b987fa82e1c98f5d3e35b4d5da6e8c4738912bb3557a0d508df1daccc894b48f866c7a3f4982a6f0ec52c2728ca33d408bfe339a0e43629
- SSDEEP
  
  1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjU+Eh6IbIKv8H8hpQc:NAoglOwvl4ulkP6vghzwYu7vih9GueIq
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence