6d1aaf6a853d39b2decbb63012fbb2fc7a125fe6307de3022d50b2b0d8b8062d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d1aaf6a853d39b2decbb63012fbb2fc7a125fe6307de3022d50b2b0d8b8062d
Size

79KB
Sample

231012-c443vsag91
MD5

810596e0b1acee4c520e0f1567903646
SHA1

d718a25fd006322d7bacd924c049639d38ce4623
SHA256

6d1aaf6a853d39b2decbb63012fbb2fc7a125fe6307de3022d50b2b0d8b8062d
SHA512

be30b5d396c3500f67f7bb7e81541ab04963415bc1672028c3ad0fd89b717b765a2178f9445c1009c6dda2d3dd471926eb869229f00030e6c495c68e31c7bc53
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOt+GNk:GhfxHNIreQm+Hi6+GNk

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  6d1aaf6a853d39b2decbb63012fbb2fc7a125fe6307de3022d50b2b0d8b8062d
- Size
  
  79KB
- MD5
  
  810596e0b1acee4c520e0f1567903646
- SHA1
  
  d718a25fd006322d7bacd924c049639d38ce4623
- SHA256
  
  6d1aaf6a853d39b2decbb63012fbb2fc7a125fe6307de3022d50b2b0d8b8062d
- SHA512
  
  be30b5d396c3500f67f7bb7e81541ab04963415bc1672028c3ad0fd89b717b765a2178f9445c1009c6dda2d3dd471926eb869229f00030e6c495c68e31c7bc53
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOt+GNk:GhfxHNIreQm+Hi6+GNk
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2