c1b91e797fabb02d1d5e5cd77faaf45ee4d47c52f5daa68aa7ca10e754ae7bdd | Triage

Sharing

General

Target

c1b91e797fabb02d1d5e5cd77faaf45ee4d47c52f5daa68aa7ca10e754ae7bdd
Size

52KB
Sample

241120-dxgveszkaz
MD5

690e817d61d161c8b6bce7b5543da09e
SHA1

c09f2e0daa904ff4a74067d29af1f98a190550ab
SHA256

c1b91e797fabb02d1d5e5cd77faaf45ee4d47c52f5daa68aa7ca10e754ae7bdd
SHA512

fe3431ce3974afd1a5d299eb60c0ea5729ab3b532bcd54e46c98ecab8de33ca307c4452da666fa40459ed273874f57a504c23749b383f67858fdf80f022bb254
SSDEEP

1536:e6q10k0EFjed6rqJ+6vghzwYu7vih9GueIh9j2IoHAjU+EmkcU+uhIehXehXhHhk:E1oEFlt6vghzwYu7vih9GueIh9j2IoHl

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  c1b91e797fabb02d1d5e5cd77faaf45ee4d47c52f5daa68aa7ca10e754ae7bdd
- Size
  
  52KB
- MD5
  
  690e817d61d161c8b6bce7b5543da09e
- SHA1
  
  c09f2e0daa904ff4a74067d29af1f98a190550ab
- SHA256
  
  c1b91e797fabb02d1d5e5cd77faaf45ee4d47c52f5daa68aa7ca10e754ae7bdd
- SHA512
  
  fe3431ce3974afd1a5d299eb60c0ea5729ab3b532bcd54e46c98ecab8de33ca307c4452da666fa40459ed273874f57a504c23749b383f67858fdf80f022bb254
- SSDEEP
  
  1536:e6q10k0EFjed6rqJ+6vghzwYu7vih9GueIh9j2IoHAjU+EmkcU+uhIehXehXhHhk:E1oEFlt6vghzwYu7vih9GueIh9j2IoHl
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence