3dbf96df235ec1ff38f66c4e826528a365d687d85af7d9086fd12dd95362f6b6 | Triage

Sharing

General

Target

3dbf96df235ec1ff38f66c4e826528a365d687d85af7d9086fd12dd95362f6b6
Size

556KB
Sample

221123-s2lrhafh5t
MD5

c529d9431bdf812cd3fb702a4fd8ada8
SHA1

dd3459a7051eaa34cd28c0c3dd133efa1dead013
SHA256

3dbf96df235ec1ff38f66c4e826528a365d687d85af7d9086fd12dd95362f6b6
SHA512

dcc787c8ce5b29bc0866058b6c4e27b1fb616932ad16f4c832952241823b23ae56ba10846ed69e5e9f4162e4aef948e1630e267158a0991e9d9b4c1466c86138
SSDEEP

12288:UsAqMGHGSX1388BxGVI43d+FPRjw/ksYtXtaFEuMmUUDxAbOeuAybAkb:UsBbW1Wc/C9EEuMmT+Kdr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3dbf96df235ec1ff38f66c4e826528a365d687d85af7d9086fd12dd95362f6b6
- Size
  
  556KB
- MD5
  
  c529d9431bdf812cd3fb702a4fd8ada8
- SHA1
  
  dd3459a7051eaa34cd28c0c3dd133efa1dead013
- SHA256
  
  3dbf96df235ec1ff38f66c4e826528a365d687d85af7d9086fd12dd95362f6b6
- SHA512
  
  dcc787c8ce5b29bc0866058b6c4e27b1fb616932ad16f4c832952241823b23ae56ba10846ed69e5e9f4162e4aef948e1630e267158a0991e9d9b4c1466c86138
- SSDEEP
  
  12288:UsAqMGHGSX1388BxGVI43d+FPRjw/ksYtXtaFEuMmUUDxAbOeuAybAkb:UsBbW1Wc/C9EEuMmT+Kdr
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2