f90c817a04c61f54ca196036c1f6bf8c667ea4d1d4e990304ae6267410457734 | Triage

Sharing

General

Target

f90c817a04c61f54ca196036c1f6bf8c667ea4d1d4e990304ae6267410457734N
Size

90KB
Sample

241014-qfr1aa1ern
MD5

053c7dccc4f69f1a71b788276b118d10
SHA1

2b074b5bb48804caa24ce96db33376b1cc94b999
SHA256

f90c817a04c61f54ca196036c1f6bf8c667ea4d1d4e990304ae6267410457734
SHA512

9c29bcc720965ddfd4f6a1a0f67fb864ed3f0bfa628739fd1cccc94ab8c200838e97e00123a4c4cb04f18db0463f6cf9bbe533bbadbb50088b2724b6df527f22
SSDEEP

768:5vw9816thKQLro84/wQkNrfrunMxVFA3bA:lEG/0o8lbunMxVS3c

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  f90c817a04c61f54ca196036c1f6bf8c667ea4d1d4e990304ae6267410457734N
- Size
  
  90KB
- MD5
  
  053c7dccc4f69f1a71b788276b118d10
- SHA1
  
  2b074b5bb48804caa24ce96db33376b1cc94b999
- SHA256
  
  f90c817a04c61f54ca196036c1f6bf8c667ea4d1d4e990304ae6267410457734
- SHA512
  
  9c29bcc720965ddfd4f6a1a0f67fb864ed3f0bfa628739fd1cccc94ab8c200838e97e00123a4c4cb04f18db0463f6cf9bbe533bbadbb50088b2724b6df527f22
- SSDEEP
  
  768:5vw9816thKQLro84/wQkNrfrunMxVFA3bA:lEG/0o8lbunMxVS3c
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence