ea5a5b0b654fcf43837740dc26d1f8643f97fbccd5e59909363edc611e0b5462 | Triage

Sharing

General

Target

ea5a5b0b654fcf43837740dc26d1f8643f97fbccd5e59909363edc611e0b5462
Size

46KB
Sample

241130-ft1t8symaj
MD5

a7c91b39fcec4a9d380c751a0e46051c
SHA1

f8819996fe680c08ca95ce2fdac6c84f230750f6
SHA256

ea5a5b0b654fcf43837740dc26d1f8643f97fbccd5e59909363edc611e0b5462
SHA512

bb403a7660eb18229c4dfb3ccc679314f638159c9c817ff76b5b9513b8ec1cef048342d7718ea0a411cb5f4288c366fb4c11b65086b2758d3892210f0f547f14
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+Eh6ID:e6q10k0EFjed6rqJ+6vghzwYu7vih9Gf

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ea5a5b0b654fcf43837740dc26d1f8643f97fbccd5e59909363edc611e0b5462
- Size
  
  46KB
- MD5
  
  a7c91b39fcec4a9d380c751a0e46051c
- SHA1
  
  f8819996fe680c08ca95ce2fdac6c84f230750f6
- SHA256
  
  ea5a5b0b654fcf43837740dc26d1f8643f97fbccd5e59909363edc611e0b5462
- SHA512
  
  bb403a7660eb18229c4dfb3ccc679314f638159c9c817ff76b5b9513b8ec1cef048342d7718ea0a411cb5f4288c366fb4c11b65086b2758d3892210f0f547f14
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+Eh6ID:e6q10k0EFjed6rqJ+6vghzwYu7vih9Gf
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence