95e20583c5091fa276324db401d9388ceddbe53f91c6df322a48ed52cc6be56c | Triage

Sharing

General

Target

95e20583c5091fa276324db401d9388ceddbe53f91c6df322a48ed52cc6be56c
Size

323KB
Sample

221123-s1y1fafg9y
MD5

e434148baab9257518eed55453ddba0e
SHA1

042ae07d2b2bf1051be33836f7aeb91dbd9fade2
SHA256

95e20583c5091fa276324db401d9388ceddbe53f91c6df322a48ed52cc6be56c
SHA512

e7f55225db8fa375726b273c8e4e5f4505fa0c2cef2d5ef7cc6069e9c045e462b7e894d5e079346d63fd53e11481709771bd5adbc3d2071e98e4b87bc53ef574
SSDEEP

6144:MRAhhJxX7bNIKTQ/arynv1oBcSvOxLp+QvnPIFBuTkuW4SWPhlL:UsAL/WUv0cSGx8QvAuxW+lL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  95e20583c5091fa276324db401d9388ceddbe53f91c6df322a48ed52cc6be56c
- Size
  
  323KB
- MD5
  
  e434148baab9257518eed55453ddba0e
- SHA1
  
  042ae07d2b2bf1051be33836f7aeb91dbd9fade2
- SHA256
  
  95e20583c5091fa276324db401d9388ceddbe53f91c6df322a48ed52cc6be56c
- SHA512
  
  e7f55225db8fa375726b273c8e4e5f4505fa0c2cef2d5ef7cc6069e9c045e462b7e894d5e079346d63fd53e11481709771bd5adbc3d2071e98e4b87bc53ef574
- SSDEEP
  
  6144:MRAhhJxX7bNIKTQ/arynv1oBcSvOxLp+QvnPIFBuTkuW4SWPhlL:UsAL/WUv0cSGx8QvAuxW+lL
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2