e86e4dcc2d3322a5da2570147765264f8b278838b3b77e5ed6d1a94acfea7f1e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e86e4dcc2d3322a5da2570147765264f8b278838b3b77e5ed6d1a94acfea7f1eN
Size

62KB
Sample

241009-ypkxbsxarf
MD5

f57ba85e4f804ce1820b0cd3c7d51860
SHA1

88ffbd467496aa2ab9be070e5d0fcd7333b14f8f
SHA256

e86e4dcc2d3322a5da2570147765264f8b278838b3b77e5ed6d1a94acfea7f1e
SHA512

e2ca740de62822c635c040c2669779b62beaebe1e6910a613cf9449b755f80fe8488b09c363d70f617691bdb14f27324018eb3bb02aea4216121d785f2c45ac5
SSDEEP

1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjU+Eh6IbIKv82yhQhh:NAoglOwvl4ulkP6vghzwYu7vih9GueIE

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e86e4dcc2d3322a5da2570147765264f8b278838b3b77e5ed6d1a94acfea7f1eN
- Size
  
  62KB
- MD5
  
  f57ba85e4f804ce1820b0cd3c7d51860
- SHA1
  
  88ffbd467496aa2ab9be070e5d0fcd7333b14f8f
- SHA256
  
  e86e4dcc2d3322a5da2570147765264f8b278838b3b77e5ed6d1a94acfea7f1e
- SHA512
  
  e2ca740de62822c635c040c2669779b62beaebe1e6910a613cf9449b755f80fe8488b09c363d70f617691bdb14f27324018eb3bb02aea4216121d785f2c45ac5
- SSDEEP
  
  1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjU+Eh6IbIKv82yhQhh:NAoglOwvl4ulkP6vghzwYu7vih9GueIE
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence