0d939912cc736881e3beaa576a71b9acd37f201d8ff3d02de0d6a1ce23569e71 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d939912cc736881e3beaa576a71b9acd37f201d8ff3d02de0d6a1ce23569e71
Size

277KB
Sample

221004-dq6vzaade3
MD5

e5ec251b61be405a62a5a7aa1ff8b142
SHA1

ba5ecfa3ef541e1eff4514b754b6f31dcbfd8f7f
SHA256

0d939912cc736881e3beaa576a71b9acd37f201d8ff3d02de0d6a1ce23569e71
SHA512

bbc5107fefbc622189628425da6b32a435aa5cecb066260cd3a4045d1fec6ba60be6acdd2e1e4a1d2f1dcae0085f8bc2d7af4fe891bbe02b7bab3148eaab2153
SSDEEP

6144:MRAhhJxX7bNIAROzTuft840Vp+4aKa8UlvujbC4mqYlU6ZUfS:UsAAPF84ap+PKQgy4mxUqUK

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0d939912cc736881e3beaa576a71b9acd37f201d8ff3d02de0d6a1ce23569e71
- Size
  
  277KB
- MD5
  
  e5ec251b61be405a62a5a7aa1ff8b142
- SHA1
  
  ba5ecfa3ef541e1eff4514b754b6f31dcbfd8f7f
- SHA256
  
  0d939912cc736881e3beaa576a71b9acd37f201d8ff3d02de0d6a1ce23569e71
- SHA512
  
  bbc5107fefbc622189628425da6b32a435aa5cecb066260cd3a4045d1fec6ba60be6acdd2e1e4a1d2f1dcae0085f8bc2d7af4fe891bbe02b7bab3148eaab2153
- SSDEEP
  
  6144:MRAhhJxX7bNIAROzTuft840Vp+4aKa8UlvujbC4mqYlU6ZUfS:UsAAPF84ap+PKQgy4mxUqUK
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2