e278dc1880b18ea4f28819b05154830a8875d4f4f34baa7604a0f131708f382c | Triage

Sharing

General

Target

e278dc1880b18ea4f28819b05154830a8875d4f4f34baa7604a0f131708f382c
Size

84KB
Sample

230824-yjcnrsfc65
MD5

6b0eb3ded61880bac6ffe00bde083929
SHA1

11a63fcea3a5d322e3ba963cb01aaa24cb5a47e2
SHA256

e278dc1880b18ea4f28819b05154830a8875d4f4f34baa7604a0f131708f382c
SHA512

d93c5b08944622261fe25b7315c4100044a43a29c5bba79f09057845e559cdec31c22e05d9ffb907c1c5d013dc8bc997d095388f29ccc1e8c726b4931bdfdc15
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOOE3g4yrKgjsk/OdfHX/:GhfxHNIreQm+HihE3g4yrKgjsk+

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  e278dc1880b18ea4f28819b05154830a8875d4f4f34baa7604a0f131708f382c
- Size
  
  84KB
- MD5
  
  6b0eb3ded61880bac6ffe00bde083929
- SHA1
  
  11a63fcea3a5d322e3ba963cb01aaa24cb5a47e2
- SHA256
  
  e278dc1880b18ea4f28819b05154830a8875d4f4f34baa7604a0f131708f382c
- SHA512
  
  d93c5b08944622261fe25b7315c4100044a43a29c5bba79f09057845e559cdec31c22e05d9ffb907c1c5d013dc8bc997d095388f29ccc1e8c726b4931bdfdc15
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOOE3g4yrKgjsk/OdfHX/:GhfxHNIreQm+HihE3g4yrKgjsk+
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2