dd2f99d08a4d753c064d136cca18a34c60e18695e670841a6631c7d39a8099c2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd2f99d08a4d753c064d136cca18a34c60e18695e670841a6631c7d39a8099c2
Size

81KB
Sample

230903-x933zaca93
MD5

cf4601b929f06f13d87483faa2632119
SHA1

095d7e679104bf656a9ab26cd1aa1cc4d5f1ebcd
SHA256

dd2f99d08a4d753c064d136cca18a34c60e18695e670841a6631c7d39a8099c2
SHA512

4a43374d0ef4ffe8e35e0f114d1ed6422b8172d69b2067f8ae089b36dce012cfbebe042ce8500f0623d49a6164d6b25d934a86c6a6e5e811083136f83fea6739
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOGtd/qWmpWOaP:GhfxHNIreQm+HiBtd/qWmpWOaP

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  dd2f99d08a4d753c064d136cca18a34c60e18695e670841a6631c7d39a8099c2
- Size
  
  81KB
- MD5
  
  cf4601b929f06f13d87483faa2632119
- SHA1
  
  095d7e679104bf656a9ab26cd1aa1cc4d5f1ebcd
- SHA256
  
  dd2f99d08a4d753c064d136cca18a34c60e18695e670841a6631c7d39a8099c2
- SHA512
  
  4a43374d0ef4ffe8e35e0f114d1ed6422b8172d69b2067f8ae089b36dce012cfbebe042ce8500f0623d49a6164d6b25d934a86c6a6e5e811083136f83fea6739
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOGtd/qWmpWOaP:GhfxHNIreQm+HiBtd/qWmpWOaP
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2