30cf6d3b67d731183d34e7bd06a6ab3f6301e9b3e8b528247c349488ed6ba152 | Triage

Sharing

General

Target

30cf6d3b67d731183d34e7bd06a6ab3f6301e9b3e8b528247c349488ed6ba152
Size

650KB
Sample

221124-d6zrlaeg34
MD5

0f18c9edd4e1aae876aedcaa11344871
SHA1

a6d7eabbac906cfc8a554e9c5f4ce1861c120a0c
SHA256

30cf6d3b67d731183d34e7bd06a6ab3f6301e9b3e8b528247c349488ed6ba152
SHA512

9420180eb36fd8b27b0e61ca06275d3ba06223bb06490717e13370bd7e383d23e343339c12b524eb1af8208e9bfcc3f05adf093aa763591a6be708ce6ad2c2bd
SSDEEP

12288:UsAqMGHGSX1388BxGVI43GVpinc0wMCgzBcCrrTjNzwhB/J4qfJMax7/YP:UsBbW1Sac0HC7CrrTpwTRfhMax0P

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  30cf6d3b67d731183d34e7bd06a6ab3f6301e9b3e8b528247c349488ed6ba152
- Size
  
  650KB
- MD5
  
  0f18c9edd4e1aae876aedcaa11344871
- SHA1
  
  a6d7eabbac906cfc8a554e9c5f4ce1861c120a0c
- SHA256
  
  30cf6d3b67d731183d34e7bd06a6ab3f6301e9b3e8b528247c349488ed6ba152
- SHA512
  
  9420180eb36fd8b27b0e61ca06275d3ba06223bb06490717e13370bd7e383d23e343339c12b524eb1af8208e9bfcc3f05adf093aa763591a6be708ce6ad2c2bd
- SSDEEP
  
  12288:UsAqMGHGSX1388BxGVI43GVpinc0wMCgzBcCrrTjNzwhB/J4qfJMax7/YP:UsBbW1Sac0HC7CrrTpwTRfhMax0P
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2