373989b8a0264912a703d54e8f3f6d37d8086ba861025b2b498349e7d85e0cff | Triage

Sharing

Copy URL Twitter E-mail

General

Target

373989b8a0264912a703d54e8f3f6d37d8086ba861025b2b498349e7d85e0cff
Size

595KB
Sample

221127-nqpxkadf59
MD5

30ea5de18f304798948f76accd625743
SHA1

408a95914cd7450a63164f2d0bfbc48a7b11dcb5
SHA256

373989b8a0264912a703d54e8f3f6d37d8086ba861025b2b498349e7d85e0cff
SHA512

fbeeb3f01348ec98520582b34580878424f5e535a5f749ff07f2285528340b745c8722e5c56622204cd32d65636b152ecf37dd5ccfb0bf5ff198b7c6b8de5951
SSDEEP

12288:UsAL/W5L/SZdSCvTF+bDTqXTa7v5ouBdhNU3MRujtojvIAiVaRpSuG7zM:UsW/WNSZ8CLGETEjnqKQAiWSuG7zM

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  373989b8a0264912a703d54e8f3f6d37d8086ba861025b2b498349e7d85e0cff
- Size
  
  595KB
- MD5
  
  30ea5de18f304798948f76accd625743
- SHA1
  
  408a95914cd7450a63164f2d0bfbc48a7b11dcb5
- SHA256
  
  373989b8a0264912a703d54e8f3f6d37d8086ba861025b2b498349e7d85e0cff
- SHA512
  
  fbeeb3f01348ec98520582b34580878424f5e535a5f749ff07f2285528340b745c8722e5c56622204cd32d65636b152ecf37dd5ccfb0bf5ff198b7c6b8de5951
- SSDEEP
  
  12288:UsAL/W5L/SZdSCvTF+bDTqXTa7v5ouBdhNU3MRujtojvIAiVaRpSuG7zM:UsW/WNSZ8CLGETEjnqKQAiWSuG7zM
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2