5c057e9597dddaf151c2784acf7158c9c18cbf11e663f7156976fcdc601c7b45 | Triage

Sharing

General

Target

5c057e9597dddaf151c2784acf7158c9c18cbf11e663f7156976fcdc601c7b45
Size

82KB
Sample

230918-cyhyfagh53
MD5

fe2bd44489ea2b5ef3b38f61ddae0653
SHA1

d7ab2e89d692b14f83bb4fb528916e60451a05fb
SHA256

5c057e9597dddaf151c2784acf7158c9c18cbf11e663f7156976fcdc601c7b45
SHA512

048bccda9a98134c616d7c437d84dbb3dbf50752e03e47f03e4f5c27437d6f4e138d8f105391d73bd88285937151012a511ce43154d97d95334f07b434162057
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOAo4BENO:GhfxHNIreQm+HiNo4BENO

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5c057e9597dddaf151c2784acf7158c9c18cbf11e663f7156976fcdc601c7b45
- Size
  
  82KB
- MD5
  
  fe2bd44489ea2b5ef3b38f61ddae0653
- SHA1
  
  d7ab2e89d692b14f83bb4fb528916e60451a05fb
- SHA256
  
  5c057e9597dddaf151c2784acf7158c9c18cbf11e663f7156976fcdc601c7b45
- SHA512
  
  048bccda9a98134c616d7c437d84dbb3dbf50752e03e47f03e4f5c27437d6f4e138d8f105391d73bd88285937151012a511ce43154d97d95334f07b434162057
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOAo4BENO:GhfxHNIreQm+HiNo4BENO
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2