c69fc420d420ec665dd87189f7d20d8096b234eda79e62dff9a28fbf2a0ef713 | Triage

Sharing

General

Target

c69fc420d420ec665dd87189f7d20d8096b234eda79e62dff9a28fbf2a0ef713
Size

320KB
Sample

221125-nrf12sea42
MD5

7e0740e97c75fbe16ba2fd8213b0bad2
SHA1

c9fc93499347dd97be4d05ac115a522f71b01836
SHA256

c69fc420d420ec665dd87189f7d20d8096b234eda79e62dff9a28fbf2a0ef713
SHA512

f6bb49bd5b41581c3fa214588a02a79859eb497bc68286494909d5c60b5772946aff5369ddf8fefcc4f9b77af86079e1a2f62c8363526cb86dd6d5c48b15b0aa
SSDEEP

6144:MRAhhJxX7bNINTf4cC05nh+H0V7kxqPoXVvzn6BjtAg0yKZ5Db9:UsAqMGHG7MXVzCtAz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c69fc420d420ec665dd87189f7d20d8096b234eda79e62dff9a28fbf2a0ef713
- Size
  
  320KB
- MD5
  
  7e0740e97c75fbe16ba2fd8213b0bad2
- SHA1
  
  c9fc93499347dd97be4d05ac115a522f71b01836
- SHA256
  
  c69fc420d420ec665dd87189f7d20d8096b234eda79e62dff9a28fbf2a0ef713
- SHA512
  
  f6bb49bd5b41581c3fa214588a02a79859eb497bc68286494909d5c60b5772946aff5369ddf8fefcc4f9b77af86079e1a2f62c8363526cb86dd6d5c48b15b0aa
- SSDEEP
  
  6144:MRAhhJxX7bNINTf4cC05nh+H0V7kxqPoXVvzn6BjtAg0yKZ5Db9:UsAqMGHG7MXVzCtAz
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2