0f8c94663bf9f8ae2cc460252020b6bdefce4173247653a90b58af282bdd97c5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f8c94663bf9f8ae2cc460252020b6bdefce4173247653a90b58af282bdd97c5
Size

806KB
Sample

221201-k62draha2y
MD5

ef1fab3740edd6b11a753884f625171a
SHA1

0bf8a7ba9d45f085126126919845673d29a3c94f
SHA256

0f8c94663bf9f8ae2cc460252020b6bdefce4173247653a90b58af282bdd97c5
SHA512

2f926faca7a82a3feba2dc8164058821b3420b9c0af52c0e5c3b09ae10d55f3a8ede181b6620002ec26c7142c9d6026d004cf746f39f4347fb6a74afb4452920
SSDEEP

24576:UsW/WNSZ8CLGETEjgXs4hDFqCLBkLuC4AvMV6:Up/HiCHbxhDMEOLutAvMV6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0f8c94663bf9f8ae2cc460252020b6bdefce4173247653a90b58af282bdd97c5
- Size
  
  806KB
- MD5
  
  ef1fab3740edd6b11a753884f625171a
- SHA1
  
  0bf8a7ba9d45f085126126919845673d29a3c94f
- SHA256
  
  0f8c94663bf9f8ae2cc460252020b6bdefce4173247653a90b58af282bdd97c5
- SHA512
  
  2f926faca7a82a3feba2dc8164058821b3420b9c0af52c0e5c3b09ae10d55f3a8ede181b6620002ec26c7142c9d6026d004cf746f39f4347fb6a74afb4452920
- SSDEEP
  
  24576:UsW/WNSZ8CLGETEjgXs4hDFqCLBkLuC4AvMV6:Up/HiCHbxhDMEOLutAvMV6
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2