e17166fd56d09e473ae86002ead2a229ab3b9c3042bc7725073e60c30359bb14 | Triage

Sharing

General

Target

e17166fd56d09e473ae86002ead2a229ab3b9c3042bc7725073e60c30359bb14
Size

33KB
Sample

241121-l3ntxs1akh
MD5

6fbddbf0cea48cfedd260e15565d9975
SHA1

112fabe9dfd3daa535c79f05ae9c06534d42409e
SHA256

e17166fd56d09e473ae86002ead2a229ab3b9c3042bc7725073e60c30359bb14
SHA512

14db6da367a7499b5fcbd2c0fa950afb82bffa4ccceae455a33219f1e1ede742df399c5e666cc9b5b4435722c00b5dff989265367ad8c8b41584783a4029c9fe
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wk7IErqyEOGNFbuSxhLIsv/orINI8hq:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wkl

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e17166fd56d09e473ae86002ead2a229ab3b9c3042bc7725073e60c30359bb14
- Size
  
  33KB
- MD5
  
  6fbddbf0cea48cfedd260e15565d9975
- SHA1
  
  112fabe9dfd3daa535c79f05ae9c06534d42409e
- SHA256
  
  e17166fd56d09e473ae86002ead2a229ab3b9c3042bc7725073e60c30359bb14
- SHA512
  
  14db6da367a7499b5fcbd2c0fa950afb82bffa4ccceae455a33219f1e1ede742df399c5e666cc9b5b4435722c00b5dff989265367ad8c8b41584783a4029c9fe
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wk7IErqyEOGNFbuSxhLIsv/orINI8hq:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wkl
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence