e30fd4182a74d2e00a62eebdd7271a9d590eb132e38909a6c20f55fcc27a0335 | Triage

Sharing

General

Target

e30fd4182a74d2e00a62eebdd7271a9d590eb132e38909a6c20f55fcc27a0335
Size

40KB
Sample

241121-l8gmssvrhl
MD5

dab4dc2b6a8e43db3b08d87076ff1571
SHA1

589f9c5a51085d9ec4a7924eeef45f3728edcd26
SHA256

e30fd4182a74d2e00a62eebdd7271a9d590eb132e38909a6c20f55fcc27a0335
SHA512

bdd656908f59ffcd568919e73d4f704fcb1751a3deb71960b1ed8a27c4e3ef4da1eb527749d2f2feb569ad47008a9f1341193472bef0238f612ca99386721efa
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJw3/z:e6q10k0EFjed6rqJ+6vghzwYu7vih9G8

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e30fd4182a74d2e00a62eebdd7271a9d590eb132e38909a6c20f55fcc27a0335
- Size
  
  40KB
- MD5
  
  dab4dc2b6a8e43db3b08d87076ff1571
- SHA1
  
  589f9c5a51085d9ec4a7924eeef45f3728edcd26
- SHA256
  
  e30fd4182a74d2e00a62eebdd7271a9d590eb132e38909a6c20f55fcc27a0335
- SHA512
  
  bdd656908f59ffcd568919e73d4f704fcb1751a3deb71960b1ed8a27c4e3ef4da1eb527749d2f2feb569ad47008a9f1341193472bef0238f612ca99386721efa
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJw3/z:e6q10k0EFjed6rqJ+6vghzwYu7vih9G8
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence