17b0d5f5e8c3171fbee8fd0f7f0510dfaf5e82c4f962727261ab15109a6b2946 | Triage

Sharing

General

Target

17b0d5f5e8c3171fbee8fd0f7f0510dfaf5e82c4f962727261ab15109a6b2946
Size

677KB
Sample

221123-s2vz6sfh6s
MD5

f577c7a9ca69f97d5658b4f06e27e1ad
SHA1

0115c4c83d8afd22d76c2d88adfb5e4f68ea7ca3
SHA256

17b0d5f5e8c3171fbee8fd0f7f0510dfaf5e82c4f962727261ab15109a6b2946
SHA512

0db72d0ad94dfaa8f72c1f58655fb66b205f041bd5751c8a93f5f74d25622de6f17e7e2e49e644c7b4b6c3790f3f067af5e2151e0c99ac0cdab1ee8f54708aa5
SSDEEP

12288:UsA1mIRjZp9IyTFCMXSWEOIsgsg+8nS+KXVs2cRZxeACeJJ5/e4o346Q:UsnIPp9IyTFC00OIswnS+uQn3/e734n

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  17b0d5f5e8c3171fbee8fd0f7f0510dfaf5e82c4f962727261ab15109a6b2946
- Size
  
  677KB
- MD5
  
  f577c7a9ca69f97d5658b4f06e27e1ad
- SHA1
  
  0115c4c83d8afd22d76c2d88adfb5e4f68ea7ca3
- SHA256
  
  17b0d5f5e8c3171fbee8fd0f7f0510dfaf5e82c4f962727261ab15109a6b2946
- SHA512
  
  0db72d0ad94dfaa8f72c1f58655fb66b205f041bd5751c8a93f5f74d25622de6f17e7e2e49e644c7b4b6c3790f3f067af5e2151e0c99ac0cdab1ee8f54708aa5
- SSDEEP
  
  12288:UsA1mIRjZp9IyTFCMXSWEOIsgsg+8nS+KXVs2cRZxeACeJJ5/e4o346Q:UsnIPp9IyTFC00OIswnS+uQn3/e734n
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2