976cda6da9c815de3bd0fc02be1996344d215363b86cff071b558f4f1be5f79d | Triage

Sharing

General

Target

976cda6da9c815de3bd0fc02be1996344d215363b86cff071b558f4f1be5f79dN.exe
Size

55KB
Sample

241130-fzjg5synfr
MD5

f325ac1f7e9ac30748656ab03d5fd250
SHA1

0bd6a083bcd152007bd6a00b9ffd97da09f2bf3b
SHA256

976cda6da9c815de3bd0fc02be1996344d215363b86cff071b558f4f1be5f79d
SHA512

d3fe4f79101a8725ec0c16463b2ba40a4e634dc432d94b7d995ecd1ed09df5bcf9e2827c9bac66d50284d850e1e15d5ed87a228005e603b91451c138817bb406
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIS:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV0

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  976cda6da9c815de3bd0fc02be1996344d215363b86cff071b558f4f1be5f79dN.exe
- Size
  
  55KB
- MD5
  
  f325ac1f7e9ac30748656ab03d5fd250
- SHA1
  
  0bd6a083bcd152007bd6a00b9ffd97da09f2bf3b
- SHA256
  
  976cda6da9c815de3bd0fc02be1996344d215363b86cff071b558f4f1be5f79d
- SHA512
  
  d3fe4f79101a8725ec0c16463b2ba40a4e634dc432d94b7d995ecd1ed09df5bcf9e2827c9bac66d50284d850e1e15d5ed87a228005e603b91451c138817bb406
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIS:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV0
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence