1ff250737d870bebb81596e6bd0ca6597a4b5129fdc83d60b4ef601e6f2704ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1ff250737d870bebb81596e6bd0ca6597a4b5129fdc83d60b4ef601e6f2704ae
Size

76KB
Sample

230901-2a63ssae29
MD5

22fcaeec1e0efb9574f85bff4e1f6af0
SHA1

70bf369ff60c18f7cb5fdb55aec9c3099092dcb3
SHA256

1ff250737d870bebb81596e6bd0ca6597a4b5129fdc83d60b4ef601e6f2704ae
SHA512

29b25d6ccaf285ce2307600780a8fbc7a7727ab01dfe2e8066d7c5463395d27e7e1bafe880edef9672287543863b7856458298d67e035d87072bc493fedb493c
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOk+:RshfSWHHNvoLqNwDDGw02eQmh0HjWOn

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1ff250737d870bebb81596e6bd0ca6597a4b5129fdc83d60b4ef601e6f2704ae
- Size
  
  76KB
- MD5
  
  22fcaeec1e0efb9574f85bff4e1f6af0
- SHA1
  
  70bf369ff60c18f7cb5fdb55aec9c3099092dcb3
- SHA256
  
  1ff250737d870bebb81596e6bd0ca6597a4b5129fdc83d60b4ef601e6f2704ae
- SHA512
  
  29b25d6ccaf285ce2307600780a8fbc7a7727ab01dfe2e8066d7c5463395d27e7e1bafe880edef9672287543863b7856458298d67e035d87072bc493fedb493c
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOk+:RshfSWHHNvoLqNwDDGw02eQmh0HjWOn
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2