63d0675d8ad10fce29f5f9c4ba987e2cbe83da7e6f4d2ffd301c8df6ce494d38 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63d0675d8ad10fce29f5f9c4ba987e2cbe83da7e6f4d2ffd301c8df6ce494d38N
Size

42KB
Sample

241014-qshmdaxfle
MD5

d40cd09cead3a94156169eca3187bbb0
SHA1

e1641f9e3693a7c051398454aa46a70b700114e8
SHA256

63d0675d8ad10fce29f5f9c4ba987e2cbe83da7e6f4d2ffd301c8df6ce494d38
SHA512

7ee5623d696f4327ba7b3787f31b00944ca27a62481bd728639fb6a64db46dc3ccef0758a22187f57d3937e933a6739eab30b0ddbe375578ef055d96bfb2d790
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJw3/J:e6q10k0EFjed6rqJ+6vghzwYu7vih9GC

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  63d0675d8ad10fce29f5f9c4ba987e2cbe83da7e6f4d2ffd301c8df6ce494d38N
- Size
  
  42KB
- MD5
  
  d40cd09cead3a94156169eca3187bbb0
- SHA1
  
  e1641f9e3693a7c051398454aa46a70b700114e8
- SHA256
  
  63d0675d8ad10fce29f5f9c4ba987e2cbe83da7e6f4d2ffd301c8df6ce494d38
- SHA512
  
  7ee5623d696f4327ba7b3787f31b00944ca27a62481bd728639fb6a64db46dc3ccef0758a22187f57d3937e933a6739eab30b0ddbe375578ef055d96bfb2d790
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJw3/J:e6q10k0EFjed6rqJ+6vghzwYu7vih9GC
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence