17ce2875407346254066382b74b1e2e531f9176e62d351d8b53d4a164d17d020 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17ce2875407346254066382b74b1e2e531f9176e62d351d8b53d4a164d17d020
Size

75KB
Sample

230929-2etchafa41
MD5

96c1938d528352b177e4dbcb5f8928bc
SHA1

d464ebaaf2d099e487a58bb581f6a162ffc91ade
SHA256

17ce2875407346254066382b74b1e2e531f9176e62d351d8b53d4a164d17d020
SHA512

f774d457223fcdbb6881f9eebb07112731769dee7b38b370ffec384eba227fd1669244a86e99488ae62aeb4ab00386b6fd4c15fdba02bcdc64497fda3051d648
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOpWo:GhfxHNIreQm+HieWo

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  17ce2875407346254066382b74b1e2e531f9176e62d351d8b53d4a164d17d020
- Size
  
  75KB
- MD5
  
  96c1938d528352b177e4dbcb5f8928bc
- SHA1
  
  d464ebaaf2d099e487a58bb581f6a162ffc91ade
- SHA256
  
  17ce2875407346254066382b74b1e2e531f9176e62d351d8b53d4a164d17d020
- SHA512
  
  f774d457223fcdbb6881f9eebb07112731769dee7b38b370ffec384eba227fd1669244a86e99488ae62aeb4ab00386b6fd4c15fdba02bcdc64497fda3051d648
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOpWo:GhfxHNIreQm+HieWo
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2