e54a03d30fcc33d101b035b1aeea98655b620439d4fae99ed061c80c7b83c5e4 | Triage

Sharing

General

Target

e54a03d30fcc33d101b035b1aeea98655b620439d4fae99ed061c80c7b83c5e4N.exe
Size

44KB
Sample

250204-zn91hatlak
MD5

e6f52f1a6ab86f0cb9daac6679197020
SHA1

0fe77a9c86872327fd34a2e748785590d8e566cc
SHA256

e54a03d30fcc33d101b035b1aeea98655b620439d4fae99ed061c80c7b83c5e4
SHA512

662785ec3872fc181361c5d7a3e9a27a2ba7d71f2a879309eb49e056f6b46baa25635cf35dedb266c417ac44b4ab7117d8b6235cd97263b016b3b504ccebb6e2
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJw3/0:e6q10k0EFjed6rqJ+6vghzwYu7vih9GD

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e54a03d30fcc33d101b035b1aeea98655b620439d4fae99ed061c80c7b83c5e4N.exe
- Size
  
  44KB
- MD5
  
  e6f52f1a6ab86f0cb9daac6679197020
- SHA1
  
  0fe77a9c86872327fd34a2e748785590d8e566cc
- SHA256
  
  e54a03d30fcc33d101b035b1aeea98655b620439d4fae99ed061c80c7b83c5e4
- SHA512
  
  662785ec3872fc181361c5d7a3e9a27a2ba7d71f2a879309eb49e056f6b46baa25635cf35dedb266c417ac44b4ab7117d8b6235cd97263b016b3b504ccebb6e2
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJw3/0:e6q10k0EFjed6rqJ+6vghzwYu7vih9GD
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence