bca3d46da26e029e76fc963ba453611a98d06eec67b2ae310e67b1b14cd6456a | Triage

Sharing

General

Target

bca3d46da26e029e76fc963ba453611a98d06eec67b2ae310e67b1b14cd6456aN.exe
Size

164KB
Sample

241121-ek72hsyakf
MD5

5090c9d2479523c8dbd91b5115305ef0
SHA1

f5bdf73c020a87d01897b3d8e331ad724c928def
SHA256

bca3d46da26e029e76fc963ba453611a98d06eec67b2ae310e67b1b14cd6456a
SHA512

45723235fd1a2639bd1615d59c4cda3c7baca1bad17a7ad29e2cb3ddd12a7d83fa9e673d468d52b4b65669f2e9a8a6ae2383c415984c4ecb127a3d09e77f1696
SSDEEP

3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08MoePBYgMcnH5VckgZ:aM7jJlRexYTHYZMPBFfcp

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  bca3d46da26e029e76fc963ba453611a98d06eec67b2ae310e67b1b14cd6456aN.exe
- Size
  
  164KB
- MD5
  
  5090c9d2479523c8dbd91b5115305ef0
- SHA1
  
  f5bdf73c020a87d01897b3d8e331ad724c928def
- SHA256
  
  bca3d46da26e029e76fc963ba453611a98d06eec67b2ae310e67b1b14cd6456a
- SHA512
  
  45723235fd1a2639bd1615d59c4cda3c7baca1bad17a7ad29e2cb3ddd12a7d83fa9e673d468d52b4b65669f2e9a8a6ae2383c415984c4ecb127a3d09e77f1696
- SSDEEP
  
  3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08MoePBYgMcnH5VckgZ:aM7jJlRexYTHYZMPBFfcp
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence