fb0bcec1bfce6a47cee5b28fe90909bc0addb61acc3b2a2737e343310000dea6 | Triage

Sharing

General

Target

fb0bcec1bfce6a47cee5b28fe90909bc0addb61acc3b2a2737e343310000dea6
Size

405KB
Sample

221106-mtsl7agbc4
MD5

23679b362206c3b8dcff679e4bb98c60
SHA1

c87373f290d2dd8651f5419b1e227ac14d32dff8
SHA256

fb0bcec1bfce6a47cee5b28fe90909bc0addb61acc3b2a2737e343310000dea6
SHA512

3baba7de02547ea64eb97328259fde187e101365a26c49230f1e9828bf27ccf8f6a3e7be700a239663ea6dc508d8f2d7f5438432e021f7f643aaeb95852a2612
SSDEEP

6144:NtKe6YiDdv3m3mgKHIl7bNIFlJYe5hhbc9FTPweUKub9CSkipcYMSmfQs541DgIb:NtKe6Zv23Yd1pbaUKub9DkccYMLQsaf

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  fb0bcec1bfce6a47cee5b28fe90909bc0addb61acc3b2a2737e343310000dea6
- Size
  
  405KB
- MD5
  
  23679b362206c3b8dcff679e4bb98c60
- SHA1
  
  c87373f290d2dd8651f5419b1e227ac14d32dff8
- SHA256
  
  fb0bcec1bfce6a47cee5b28fe90909bc0addb61acc3b2a2737e343310000dea6
- SHA512
  
  3baba7de02547ea64eb97328259fde187e101365a26c49230f1e9828bf27ccf8f6a3e7be700a239663ea6dc508d8f2d7f5438432e021f7f643aaeb95852a2612
- SSDEEP
  
  6144:NtKe6YiDdv3m3mgKHIl7bNIFlJYe5hhbc9FTPweUKub9CSkipcYMSmfQs541DgIb:NtKe6Zv23Yd1pbaUKub9DkccYMLQsaf
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2