4e97d0d0334cbc101ac269dff27a7599ae62e2c9f19b6aa469f7fbac955e6184 | Triage

Sharing

General

Target

4e97d0d0334cbc101ac269dff27a7599ae62e2c9f19b6aa469f7fbac955e6184
Size

841KB
Sample

221123-s2f61scg84
MD5

b1f879b5ebd44fb0cdce6060704efd59
SHA1

3e73d5811f616cb49416bdb2301120f3f37a8536
SHA256

4e97d0d0334cbc101ac269dff27a7599ae62e2c9f19b6aa469f7fbac955e6184
SHA512

6da292c8f422ce106260aa6569e7acb00cc634cfe3e77671444c73063a8552ba84b26058147583aa2f617d70a00ce120ebe1ccfc95c0d7a6b33a6c9ac63b49fd
SSDEEP

24576:UsW/WNSZ8CLGETGaFZMOJ3BoYk1vAvtNB9G7XP:Up/HiCHqa7TBa1ovt8f

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  4e97d0d0334cbc101ac269dff27a7599ae62e2c9f19b6aa469f7fbac955e6184
- Size
  
  841KB
- MD5
  
  b1f879b5ebd44fb0cdce6060704efd59
- SHA1
  
  3e73d5811f616cb49416bdb2301120f3f37a8536
- SHA256
  
  4e97d0d0334cbc101ac269dff27a7599ae62e2c9f19b6aa469f7fbac955e6184
- SHA512
  
  6da292c8f422ce106260aa6569e7acb00cc634cfe3e77671444c73063a8552ba84b26058147583aa2f617d70a00ce120ebe1ccfc95c0d7a6b33a6c9ac63b49fd
- SSDEEP
  
  24576:UsW/WNSZ8CLGETGaFZMOJ3BoYk1vAvtNB9G7XP:Up/HiCHqa7TBa1ovt8f
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2