4eb2d4d8c4ff8b10906502e1453fb7e28a2eb5cc68cc81cc7923d93b8f9793de | Triage

Sharing

General

Target

4eb2d4d8c4ff8b10906502e1453fb7e28a2eb5cc68cc81cc7923d93b8f9793de
Size

76KB
Sample

231011-qd6ewshb5w
MD5

2dafcf77f17526c90c0985e3ed8a5889
SHA1

29d4eed99d3fc2099930adea21c49ef58c07647b
SHA256

4eb2d4d8c4ff8b10906502e1453fb7e28a2eb5cc68cc81cc7923d93b8f9793de
SHA512

f1f8d162bdceab1356b93bdbac9a164a98380df68565b71988c026899d20d8165c547dec9d08f38cdd609e8e9b3c3ef8922a266062c05daa21c919c38bd74a38
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOCxr:GhfxHNIreQm+Hilxr

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  4eb2d4d8c4ff8b10906502e1453fb7e28a2eb5cc68cc81cc7923d93b8f9793de
- Size
  
  76KB
- MD5
  
  2dafcf77f17526c90c0985e3ed8a5889
- SHA1
  
  29d4eed99d3fc2099930adea21c49ef58c07647b
- SHA256
  
  4eb2d4d8c4ff8b10906502e1453fb7e28a2eb5cc68cc81cc7923d93b8f9793de
- SHA512
  
  f1f8d162bdceab1356b93bdbac9a164a98380df68565b71988c026899d20d8165c547dec9d08f38cdd609e8e9b3c3ef8922a266062c05daa21c919c38bd74a38
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOCxr:GhfxHNIreQm+Hilxr
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2