d9ebef62e2a1d0830adafd133c6ed719f13bd1976078e7221c2496d53124f61f | Triage

Sharing

General

Target

d9ebef62e2a1d0830adafd133c6ed719f13bd1976078e7221c2496d53124f61f
Size

752KB
Sample

221201-k4weqadb88
MD5

060dacaae758a5f3ac658ee961f23f49
SHA1

b304d7fc12b79f33d0d201fabad082df1b175127
SHA256

d9ebef62e2a1d0830adafd133c6ed719f13bd1976078e7221c2496d53124f61f
SHA512

3eab3e4077a4e9a241eea32e8752f6bc23cbc93731b64d4911298222868baf9656856ddeaaa0625cecc7db1edeebce92f8cfdc5869aa19fabd4be5243af559ad
SSDEEP

12288:UsAL/W5L/SZdSCvTF+bDTqXTa7v5ougtHEg/7Q4hvaJAPFqOm2SgBk5puCi+aABX:UsW/WNSZ8CLGETEjgXs4hDFqCLBkLuCV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d9ebef62e2a1d0830adafd133c6ed719f13bd1976078e7221c2496d53124f61f
- Size
  
  752KB
- MD5
  
  060dacaae758a5f3ac658ee961f23f49
- SHA1
  
  b304d7fc12b79f33d0d201fabad082df1b175127
- SHA256
  
  d9ebef62e2a1d0830adafd133c6ed719f13bd1976078e7221c2496d53124f61f
- SHA512
  
  3eab3e4077a4e9a241eea32e8752f6bc23cbc93731b64d4911298222868baf9656856ddeaaa0625cecc7db1edeebce92f8cfdc5869aa19fabd4be5243af559ad
- SSDEEP
  
  12288:UsAL/W5L/SZdSCvTF+bDTqXTa7v5ougtHEg/7Q4hvaJAPFqOm2SgBk5puCi+aABX:UsW/WNSZ8CLGETEjgXs4hDFqCLBkLuCV
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2