4d47bb25cd6ef0cb0d4b9b6311800fb5272b181fb1febabf97363cbea5f5fc67 | Triage

Sharing

General

Target

4d47bb25cd6ef0cb0d4b9b6311800fb5272b181fb1febabf97363cbea5f5fc67N.exe
Size

32KB
Sample

241121-kt3faazfjc
MD5

fff6d956d85079b62d54f7cf640a6670
SHA1

f6335c2c8c64472505d6929853664b153d2b7923
SHA256

4d47bb25cd6ef0cb0d4b9b6311800fb5272b181fb1febabf97363cbea5f5fc67
SHA512

92ac9cbb23410ca04179c4357592db25f1ce3773b9f1c2e9f5c431989aa1c82f2461cb9b62c1246d9ea5be65f00861dfd5b0950cd871368fd25ad7f8b4f5f2e1
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wk7IErqyEOGNFbuSxhLIsv/hDhtMI2B:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wk1

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  4d47bb25cd6ef0cb0d4b9b6311800fb5272b181fb1febabf97363cbea5f5fc67N.exe
- Size
  
  32KB
- MD5
  
  fff6d956d85079b62d54f7cf640a6670
- SHA1
  
  f6335c2c8c64472505d6929853664b153d2b7923
- SHA256
  
  4d47bb25cd6ef0cb0d4b9b6311800fb5272b181fb1febabf97363cbea5f5fc67
- SHA512
  
  92ac9cbb23410ca04179c4357592db25f1ce3773b9f1c2e9f5c431989aa1c82f2461cb9b62c1246d9ea5be65f00861dfd5b0950cd871368fd25ad7f8b4f5f2e1
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wk7IErqyEOGNFbuSxhLIsv/hDhtMI2B:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wk1
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence