8ef3e776b6192a32d26d1c07c6dc83b9e4dba4de4d0a102054c2d38b5558d0f7 | Triage

Sharing

General

Target

8ef3e776b6192a32d26d1c07c6dc83b9e4dba4de4d0a102054c2d38b5558d0f7.exe
Size

43KB
Sample

241119-wy1m2azjdt
MD5

aeb4b3bd675b61f6f2bfe61001245856
SHA1

00e7cda816f26102669128e4ab0b95b9572d3939
SHA256

8ef3e776b6192a32d26d1c07c6dc83b9e4dba4de4d0a102054c2d38b5558d0f7
SHA512

388266909981bb5acde6fe2de8f10d88c0ec3d5ed8f11c2d5005e6a3361557eef6586dbb9d1170dd2ba6b33f33b4c33cc37129d9d0f7444f5327b5b620a8c530
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+Eh6II:e6q10k0EFjed6rqJ+6vghzwYu7vih9G8

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  8ef3e776b6192a32d26d1c07c6dc83b9e4dba4de4d0a102054c2d38b5558d0f7.exe
- Size
  
  43KB
- MD5
  
  aeb4b3bd675b61f6f2bfe61001245856
- SHA1
  
  00e7cda816f26102669128e4ab0b95b9572d3939
- SHA256
  
  8ef3e776b6192a32d26d1c07c6dc83b9e4dba4de4d0a102054c2d38b5558d0f7
- SHA512
  
  388266909981bb5acde6fe2de8f10d88c0ec3d5ed8f11c2d5005e6a3361557eef6586dbb9d1170dd2ba6b33f33b4c33cc37129d9d0f7444f5327b5b620a8c530
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+Eh6II:e6q10k0EFjed6rqJ+6vghzwYu7vih9G8
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence