b1f817642ccec39022cffd5b237d13e151f934485252e4786f33791d1f0a4a65 | Triage

Sharing

General

Target

b1f817642ccec39022cffd5b237d13e151f934485252e4786f33791d1f0a4a65N
Size

68KB
Sample

241017-nxcwkszalr
MD5

7e3488fd74276c1f7df3951e9d2cd8b0
SHA1

157bb3f8ea7d21e0736d6f4ec386c59842c5c6a8
SHA256

b1f817642ccec39022cffd5b237d13e151f934485252e4786f33791d1f0a4a65
SHA512

76157b43154cd28e8403616e3bef8a3c1d3face231ac10bfcfb58d638f831c6288aaea6982a7fef1c716aa24464848cdff19831bcc788183828809838301589d
SSDEEP

1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjU+EmkcU+uhIehXeh+:NAoglOwvl4ulkP6vghzwYu7vih9GueI6

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  b1f817642ccec39022cffd5b237d13e151f934485252e4786f33791d1f0a4a65N
- Size
  
  68KB
- MD5
  
  7e3488fd74276c1f7df3951e9d2cd8b0
- SHA1
  
  157bb3f8ea7d21e0736d6f4ec386c59842c5c6a8
- SHA256
  
  b1f817642ccec39022cffd5b237d13e151f934485252e4786f33791d1f0a4a65
- SHA512
  
  76157b43154cd28e8403616e3bef8a3c1d3face231ac10bfcfb58d638f831c6288aaea6982a7fef1c716aa24464848cdff19831bcc788183828809838301589d
- SSDEEP
  
  1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjU+EmkcU+uhIehXeh+:NAoglOwvl4ulkP6vghzwYu7vih9GueI6
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence