f18e6a04646343abe0642a85689457f7617d1a7fb3ac064c20fd179d2c9b0ba2 | Triage

Sharing

General

Target

f18e6a04646343abe0642a85689457f7617d1a7fb3ac064c20fd179d2c9b0ba2
Size

356KB
Sample

221123-s1ea2acf99
MD5

bc70a37d954a8ce593ed684c6585a877
SHA1

de1896848f3e40cade911a8013a3c9efd740d17b
SHA256

f18e6a04646343abe0642a85689457f7617d1a7fb3ac064c20fd179d2c9b0ba2
SHA512

415e9246d6096f816ba7eafaf753875e53e27883bc78f264e4abee2c811494046c1a5f4effa0de609604abdd8b16fdfdea782271f0bbbebdff02efe58576f86a
SSDEEP

6144:MRAhhJxX7bNIAROzTuaPUD8XRufY7L3oDNOqmq9W67mxyvkd+lpJA:UsAAPaPUD1SYDUxq9WUUyvMGrA

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f18e6a04646343abe0642a85689457f7617d1a7fb3ac064c20fd179d2c9b0ba2
- Size
  
  356KB
- MD5
  
  bc70a37d954a8ce593ed684c6585a877
- SHA1
  
  de1896848f3e40cade911a8013a3c9efd740d17b
- SHA256
  
  f18e6a04646343abe0642a85689457f7617d1a7fb3ac064c20fd179d2c9b0ba2
- SHA512
  
  415e9246d6096f816ba7eafaf753875e53e27883bc78f264e4abee2c811494046c1a5f4effa0de609604abdd8b16fdfdea782271f0bbbebdff02efe58576f86a
- SSDEEP
  
  6144:MRAhhJxX7bNIAROzTuaPUD8XRufY7L3oDNOqmq9W67mxyvkd+lpJA:UsAAPaPUD1SYDUxq9WUUyvMGrA
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2