1ac1b512ad902e2e852e44c237d1081b91ee8dbb46d45a7b69ec8e30c6f25fae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1ac1b512ad902e2e852e44c237d1081b91ee8dbb46d45a7b69ec8e30c6f25fae
Size

76KB
Sample

230824-xwcnvsgf61
MD5

5ef2c53f6b88c27b99296eaa354ea32e
SHA1

6c897861bed721fdc600654bfd8acac4764d1f14
SHA256

1ac1b512ad902e2e852e44c237d1081b91ee8dbb46d45a7b69ec8e30c6f25fae
SHA512

b6f893c05b5d022a39c5603ca1bf6f5f6e0854c37246fa99ec56055cea75f20a18b380669ed4c5851c0c68700a67c319e095e8d4b99d3725d68b14b4253ea129
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO5Q8a:GhfxHNIreQm+Hi2Q8a

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1ac1b512ad902e2e852e44c237d1081b91ee8dbb46d45a7b69ec8e30c6f25fae
- Size
  
  76KB
- MD5
  
  5ef2c53f6b88c27b99296eaa354ea32e
- SHA1
  
  6c897861bed721fdc600654bfd8acac4764d1f14
- SHA256
  
  1ac1b512ad902e2e852e44c237d1081b91ee8dbb46d45a7b69ec8e30c6f25fae
- SHA512
  
  b6f893c05b5d022a39c5603ca1bf6f5f6e0854c37246fa99ec56055cea75f20a18b380669ed4c5851c0c68700a67c319e095e8d4b99d3725d68b14b4253ea129
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO5Q8a:GhfxHNIreQm+Hi2Q8a
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2