a77ed9736db27e4dcc81aed9da823ed4e6fb0ad8e53f44c5ee77a6a3a90280cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a77ed9736db27e4dcc81aed9da823ed4e6fb0ad8e53f44c5ee77a6a3a90280cc
Size

834KB
Sample

221107-s3jzasgdap
MD5

2004599f291587df7fddb99a81fc5437
SHA1

b35e5322d4e476f513bb0846557397373f38fdfc
SHA256

a77ed9736db27e4dcc81aed9da823ed4e6fb0ad8e53f44c5ee77a6a3a90280cc
SHA512

f3bff2b3861ea71594a564e4afc0d23c191669542f374e3fb4e36321f7d9f599f528c52cd0626bbc9a078770fa52d91d227f269861291eaaa799535cb7017cba
SSDEEP

12288:NtKe6Zv23YdqMGHGSX1388BxGVI43GVpinJMcODu5bsIJoju8j5SrPg12jzbSjF7:d6Zv2jbW1SaRhaFjsz8A/wVe7pY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a77ed9736db27e4dcc81aed9da823ed4e6fb0ad8e53f44c5ee77a6a3a90280cc
- Size
  
  834KB
- MD5
  
  2004599f291587df7fddb99a81fc5437
- SHA1
  
  b35e5322d4e476f513bb0846557397373f38fdfc
- SHA256
  
  a77ed9736db27e4dcc81aed9da823ed4e6fb0ad8e53f44c5ee77a6a3a90280cc
- SHA512
  
  f3bff2b3861ea71594a564e4afc0d23c191669542f374e3fb4e36321f7d9f599f528c52cd0626bbc9a078770fa52d91d227f269861291eaaa799535cb7017cba
- SSDEEP
  
  12288:NtKe6Zv23YdqMGHGSX1388BxGVI43GVpinJMcODu5bsIJoju8j5SrPg12jzbSjF7:d6Zv2jbW1SaRhaFjsz8A/wVe7pY
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2