f76828260437ed7e821cb63a2c74af59769aacc95d151d57195a80e718b45f1f | Triage

Sharing

General

Target

f76828260437ed7e821cb63a2c74af59769aacc95d151d57195a80e718b45f1fN
Size

26KB
Sample

241015-epntfaxhqp
MD5

1080aa1844d74821bf4bb469b996f620
SHA1

a2465ab64852a3be81eaef4978d99d107ac322a2
SHA256

f76828260437ed7e821cb63a2c74af59769aacc95d151d57195a80e718b45f1f
SHA512

a70636e0592af2be476a59ecb1e8b511aebad527f82d9f03faa6d1b993a14006b36306c777e17559ff414045f7520471c3765ef486490f566fc93b7da162a547
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wk7IErqyEOGNFbuSxhLIsv/hDhtMhv8:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wk0

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  f76828260437ed7e821cb63a2c74af59769aacc95d151d57195a80e718b45f1fN
- Size
  
  26KB
- MD5
  
  1080aa1844d74821bf4bb469b996f620
- SHA1
  
  a2465ab64852a3be81eaef4978d99d107ac322a2
- SHA256
  
  f76828260437ed7e821cb63a2c74af59769aacc95d151d57195a80e718b45f1f
- SHA512
  
  a70636e0592af2be476a59ecb1e8b511aebad527f82d9f03faa6d1b993a14006b36306c777e17559ff414045f7520471c3765ef486490f566fc93b7da162a547
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wk7IErqyEOGNFbuSxhLIsv/hDhtMhv8:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wk0
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence