6211ac800c03eb509d97d56e6aca297ef3a63b7a07f4d1decca4b890c596e2a8 | Triage

Sharing

General

Target

6211ac800c03eb509d97d56e6aca297ef3a63b7a07f4d1decca4b890c596e2a8
Size

440KB
Sample

221127-yhqt1adf87
MD5

1c091522601114383db9e8c7729404ed
SHA1

a78dc8ce33197507b71c0465741bce2e87bcbfaa
SHA256

6211ac800c03eb509d97d56e6aca297ef3a63b7a07f4d1decca4b890c596e2a8
SHA512

3fab86536f6949d56e87a1577d75ee56519ed422768e82b0e685e75fb4463b65913579402eea4820bbb6b8555eb3ae9b532f0eb13d0a3949631e5857872ffa1f
SSDEEP

6144:MRAhhJxX7bNINTf4cC05nh+H0Vq1p6xxeN9CYqzWiQc/IdLqNm3p4/yMjAr:UsAqMGHGqExeNG4cAINmaqMjE

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  6211ac800c03eb509d97d56e6aca297ef3a63b7a07f4d1decca4b890c596e2a8
- Size
  
  440KB
- MD5
  
  1c091522601114383db9e8c7729404ed
- SHA1
  
  a78dc8ce33197507b71c0465741bce2e87bcbfaa
- SHA256
  
  6211ac800c03eb509d97d56e6aca297ef3a63b7a07f4d1decca4b890c596e2a8
- SHA512
  
  3fab86536f6949d56e87a1577d75ee56519ed422768e82b0e685e75fb4463b65913579402eea4820bbb6b8555eb3ae9b532f0eb13d0a3949631e5857872ffa1f
- SSDEEP
  
  6144:MRAhhJxX7bNINTf4cC05nh+H0Vq1p6xxeN9CYqzWiQc/IdLqNm3p4/yMjAr:UsAqMGHGqExeNG4cAINmaqMjE
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2