25591ffe580ac8102589607d4448705056fe0f0fed35ecbc661fbe1929d9cc77 | Triage

Sharing

General

Target

25591ffe580ac8102589607d4448705056fe0f0fed35ecbc661fbe1929d9cc77
Size

28KB
Sample

241017-x6zw5ssakd
MD5

8b4ee2125e34ccf750095f03644aa40b
SHA1

2e56da1bbf6035cbe0a7c8015300fb2234cd46cc
SHA256

25591ffe580ac8102589607d4448705056fe0f0fed35ecbc661fbe1929d9cc77
SHA512

a30637036bb47e1b3e4ea9dab28ab1c67b1e704a34d93a0e84240734b8bc41d2055734573922260e14bd4afa60483a68ed692a5963fd8965dc2bb3f2e70ee24d
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wk7IErqyEOGNFbuSxhLIsv/orINI8hY:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wkz

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  25591ffe580ac8102589607d4448705056fe0f0fed35ecbc661fbe1929d9cc77
- Size
  
  28KB
- MD5
  
  8b4ee2125e34ccf750095f03644aa40b
- SHA1
  
  2e56da1bbf6035cbe0a7c8015300fb2234cd46cc
- SHA256
  
  25591ffe580ac8102589607d4448705056fe0f0fed35ecbc661fbe1929d9cc77
- SHA512
  
  a30637036bb47e1b3e4ea9dab28ab1c67b1e704a34d93a0e84240734b8bc41d2055734573922260e14bd4afa60483a68ed692a5963fd8965dc2bb3f2e70ee24d
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wk7IErqyEOGNFbuSxhLIsv/orINI8hY:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wkz
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence