b8a03b75c202a0087992a4ea7fdccb46d076cebcebe39fdd91fa25b01ba8aac4 | Triage

Sharing

General

Target

a87fb7f6b64105deccb1b7e3a6600352_mafia_JC.exe
Size

1.8MB
Sample

230827-q4ae5shg97
MD5

a87fb7f6b64105deccb1b7e3a6600352
SHA1

ae1a43444e7f17cbb7c703b3fc154dd1c35b4f4c
SHA256

b8a03b75c202a0087992a4ea7fdccb46d076cebcebe39fdd91fa25b01ba8aac4
SHA512

f8055676bb5213e682461bbfc7ca39e897622149abd42f985e8dc19b4ab6384fc5580fee2508a41036274faed757b118312434c09d7060727714297beaf31b01
SSDEEP

49152:PtxXJaNy7TN7AdluD/Ba5FRxfHUJdZfcgyhGIGT0Yi7YicZRh:1mXYAYl

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a87fb7f6b64105deccb1b7e3a6600352_mafia_JC.exe
- Size
  
  1.8MB
- MD5
  
  a87fb7f6b64105deccb1b7e3a6600352
- SHA1
  
  ae1a43444e7f17cbb7c703b3fc154dd1c35b4f4c
- SHA256
  
  b8a03b75c202a0087992a4ea7fdccb46d076cebcebe39fdd91fa25b01ba8aac4
- SHA512
  
  f8055676bb5213e682461bbfc7ca39e897622149abd42f985e8dc19b4ab6384fc5580fee2508a41036274faed757b118312434c09d7060727714297beaf31b01
- SSDEEP
  
  49152:PtxXJaNy7TN7AdluD/Ba5FRxfHUJdZfcgyhGIGT0Yi7YicZRh:1mXYAYl
Score

8^/10

persistence
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2