8660edc893df44d2b285e79b95ddf782111de1fb2789c47031ac9b692ebec15f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8660edc893df44d2b285e79b95ddf782111de1fb2789c47031ac9b692ebec15f
Size

672KB
Sample

221107-ytpq3sfdh9
MD5

01369967e39cee8aa6397e259c8f878e
SHA1

a4c74109411c264430f0b312c446e032904767a3
SHA256

8660edc893df44d2b285e79b95ddf782111de1fb2789c47031ac9b692ebec15f
SHA512

9106bb720873a59b05a2ad4ffeae089f777a766dad478a134f2e011fad90079b4abf32fa986eae488b821658fc0953788a44a2979f30bbc0cb740b4c2d991bad
SSDEEP

12288:NtKe6Zv23Yd1mIRjZp9IyTFCMXSWEOIsgsgS04XYODQlFDvoAQ01+GDsKeyaKEsF:d6Zv2VIPp9IyTFC00OIsXYXDvVQ0rIKX

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8660edc893df44d2b285e79b95ddf782111de1fb2789c47031ac9b692ebec15f
- Size
  
  672KB
- MD5
  
  01369967e39cee8aa6397e259c8f878e
- SHA1
  
  a4c74109411c264430f0b312c446e032904767a3
- SHA256
  
  8660edc893df44d2b285e79b95ddf782111de1fb2789c47031ac9b692ebec15f
- SHA512
  
  9106bb720873a59b05a2ad4ffeae089f777a766dad478a134f2e011fad90079b4abf32fa986eae488b821658fc0953788a44a2979f30bbc0cb740b4c2d991bad
- SSDEEP
  
  12288:NtKe6Zv23Yd1mIRjZp9IyTFCMXSWEOIsgsgS04XYODQlFDvoAQ01+GDsKeyaKEsF:d6Zv2VIPp9IyTFC00OIsXYXDvVQ0rIKX
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2