d7d37795dddbcca79b5cc0fa5834fd26b86151d16a8f35b533dd00946b37dca8 | Triage

Sharing

General

Target

d7d37795dddbcca79b5cc0fa5834fd26b86151d16a8f35b533dd00946b37dca8N.exe
Size

53KB
Sample

241130-fwaqtsymek
MD5

2a8c3cc082c7a6c99590d882ee8f7b30
SHA1

d4276a3b88ae6240235720d157c9fcb18d22cd08
SHA256

d7d37795dddbcca79b5cc0fa5834fd26b86151d16a8f35b533dd00946b37dca8
SHA512

f536ba29d075f2544a6f60243e9bf3adcac130d379d71bbe1d1c52edd5cd1f38dc47b093d696d070217dec7aeae1872219ed63fc5423def2f669c49b4103e986
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIb:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVx

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  d7d37795dddbcca79b5cc0fa5834fd26b86151d16a8f35b533dd00946b37dca8N.exe
- Size
  
  53KB
- MD5
  
  2a8c3cc082c7a6c99590d882ee8f7b30
- SHA1
  
  d4276a3b88ae6240235720d157c9fcb18d22cd08
- SHA256
  
  d7d37795dddbcca79b5cc0fa5834fd26b86151d16a8f35b533dd00946b37dca8
- SHA512
  
  f536ba29d075f2544a6f60243e9bf3adcac130d379d71bbe1d1c52edd5cd1f38dc47b093d696d070217dec7aeae1872219ed63fc5423def2f669c49b4103e986
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIb:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVx
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence