154585e22d0a2dc9e2f22ce3932688c6a3590aa9ecc28fd678b98ab358853b96 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

154585e22d0a2dc9e2f22ce3932688c6a3590aa9ecc28fd678b98ab358853b96
Size

76KB
Sample

231010-zk2jysca84
MD5

c1795cae53e450f36ee55ecdffa1a257
SHA1

c16a52b9f10a669cbf9f4c775ffaae9a79344c3c
SHA256

154585e22d0a2dc9e2f22ce3932688c6a3590aa9ecc28fd678b98ab358853b96
SHA512

b977c35da709497d5647ccbc06ef6ec7f90644e44bf726f67004cc3c8ec9d9c87a4e0a741de0984aa37fbec46e62b01d2bcfcc8fbe7e366956c6d674a18fe269
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOj3c:GhfxHNIreQm+HiM3c

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  154585e22d0a2dc9e2f22ce3932688c6a3590aa9ecc28fd678b98ab358853b96
- Size
  
  76KB
- MD5
  
  c1795cae53e450f36ee55ecdffa1a257
- SHA1
  
  c16a52b9f10a669cbf9f4c775ffaae9a79344c3c
- SHA256
  
  154585e22d0a2dc9e2f22ce3932688c6a3590aa9ecc28fd678b98ab358853b96
- SHA512
  
  b977c35da709497d5647ccbc06ef6ec7f90644e44bf726f67004cc3c8ec9d9c87a4e0a741de0984aa37fbec46e62b01d2bcfcc8fbe7e366956c6d674a18fe269
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOj3c:GhfxHNIreQm+HiM3c
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2