f608d1677481ca9f6d9e9bf2a9ef0a8fdc1310bf6ea26f76a52cc02854ca5dd4 | Triage

Sharing

General

Target

f608d1677481ca9f6d9e9bf2a9ef0a8fdc1310bf6ea26f76a52cc02854ca5dd4.exe
Size

97KB
Sample

241120-dz1ejs1ajk
MD5

7f82b25d4378a3376203fe25439fd53b
SHA1

2a63202cc122bfbee5002c27739ad123a1e52d23
SHA256

f608d1677481ca9f6d9e9bf2a9ef0a8fdc1310bf6ea26f76a52cc02854ca5dd4
SHA512

c530e0c4e16b824bba00714eb0f5a4c1a75d693bc1b64311b5be805d8c7b64033f8de8cd47290156e44d6641dcfd30785ed23ee10c31aeba9cdfffe77e98ca91
SSDEEP

3072:FlnnJBSX1nV1b1N1Il1k1YFI1x1J1MuEqx517Q/1T1Jzct01Nbnl1RRhCHODMe1X:zw6L/

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  f608d1677481ca9f6d9e9bf2a9ef0a8fdc1310bf6ea26f76a52cc02854ca5dd4.exe
- Size
  
  97KB
- MD5
  
  7f82b25d4378a3376203fe25439fd53b
- SHA1
  
  2a63202cc122bfbee5002c27739ad123a1e52d23
- SHA256
  
  f608d1677481ca9f6d9e9bf2a9ef0a8fdc1310bf6ea26f76a52cc02854ca5dd4
- SHA512
  
  c530e0c4e16b824bba00714eb0f5a4c1a75d693bc1b64311b5be805d8c7b64033f8de8cd47290156e44d6641dcfd30785ed23ee10c31aeba9cdfffe77e98ca91
- SSDEEP
  
  3072:FlnnJBSX1nV1b1N1Il1k1YFI1x1J1MuEqx517Q/1T1Jzct01Nbnl1RRhCHODMe1X:zw6L/
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence