3b632f83d36bc68f199345450d46a2c6b4f827417609fa928ee969a47dcd2fa2 | Triage

Sharing

General

Target

3b632f83d36bc68f199345450d46a2c6b4f827417609fa928ee969a47dcd2fa2
Size

321KB
Sample

221124-d6q5fsef96
MD5

53d09b95251719d4ba82a43365d8d4fa
SHA1

50f0b24b9c669520a0e2a953faab41e0d3461931
SHA256

3b632f83d36bc68f199345450d46a2c6b4f827417609fa928ee969a47dcd2fa2
SHA512

312a0d94fab8d542a4fc33e3571668b03719de53a36ab612a4bc3305b74ee6cfe3e5e3905490afa689d30a5c7d37a09ab9460ed69815a4706b3ca570c8170359
SSDEEP

6144:MRAhhJxX7bNIAROzTuaPUD8XRuf0b4mt/R/0DMrRSi/tGvZIKTyDXNJ+:UsAAPaPUD18t/R/OgR7tGvSgKNJ+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3b632f83d36bc68f199345450d46a2c6b4f827417609fa928ee969a47dcd2fa2
- Size
  
  321KB
- MD5
  
  53d09b95251719d4ba82a43365d8d4fa
- SHA1
  
  50f0b24b9c669520a0e2a953faab41e0d3461931
- SHA256
  
  3b632f83d36bc68f199345450d46a2c6b4f827417609fa928ee969a47dcd2fa2
- SHA512
  
  312a0d94fab8d542a4fc33e3571668b03719de53a36ab612a4bc3305b74ee6cfe3e5e3905490afa689d30a5c7d37a09ab9460ed69815a4706b3ca570c8170359
- SSDEEP
  
  6144:MRAhhJxX7bNIAROzTuaPUD8XRuf0b4mt/R/0DMrRSi/tGvZIKTyDXNJ+:UsAAPaPUD18t/R/OgR7tGvSgKNJ+
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2