940f186a0037a560f77f458621c8f9fa66e3a4cbc8d5a17d6a8de35ae5d5d5da | Triage

Sharing

General

Target

RDPChange.exe
Size

96KB
Sample

230719-ms3e1acf36
MD5

14471958bb32cc5722ee0ffd56c11ed2
SHA1

9fc368c4535af1c5876bfe7d70fe12db140bf66f
SHA256

940f186a0037a560f77f458621c8f9fa66e3a4cbc8d5a17d6a8de35ae5d5d5da
SHA512

20a2b596c644a5734923feafec963200137201f0ecb144db8798d278b3122ccde39723b64f865b120eb72eff236d2c891d9fd4d1ba45811073cb73abdbdaf59e
SSDEEP

1536:MB5rBq8A4w46dnXftAzh0/1qKncM2BI2kdcrBq8A4w46dnXft:WBXA4w46de1CoBrkd0BXA4w46d

Score

8^/10

Malware Config

Targets

- Target
  
  RDPChange.exe
- Size
  
  96KB
- MD5
  
  14471958bb32cc5722ee0ffd56c11ed2
- SHA1
  
  9fc368c4535af1c5876bfe7d70fe12db140bf66f
- SHA256
  
  940f186a0037a560f77f458621c8f9fa66e3a4cbc8d5a17d6a8de35ae5d5d5da
- SHA512
  
  20a2b596c644a5734923feafec963200137201f0ecb144db8798d278b3122ccde39723b64f865b120eb72eff236d2c891d9fd4d1ba45811073cb73abdbdaf59e
- SSDEEP
  
  1536:MB5rBq8A4w46dnXftAzh0/1qKncM2BI2kdcrBq8A4w46dnXft:WBXA4w46de1CoBrkd0BXA4w46d
Score

8^/10
- Modifies RDP port number used by Windows
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Remote Desktop Protocol

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2