b7da9b80d0cbe72dca79b2e5eec26d8c7329fcf47394bffb6d13fda39c95ff8c | Triage

Sharing

General

Target

b7da9b80d0cbe72dca79b2e5eec26d8c7329fcf47394bffb6d13fda39c95ff8c
Size

80KB
Sample

231012-q53s3scg7y
MD5

af751f552eb2bdc941fa1c9c6da9b12f
SHA1

241823daabcd3be14acd1e5989b8c51d0dee418c
SHA256

b7da9b80d0cbe72dca79b2e5eec26d8c7329fcf47394bffb6d13fda39c95ff8c
SHA512

ae373083385af78988973bb8deb18e0a4e60176d54797c989f293f837e1ff2ed03810079e34f37cec6d81b46964f6f894ba2167c419173713f747b7be5e88cf8
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOr0p9:GhfxHNIreQm+Hi40p9

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  b7da9b80d0cbe72dca79b2e5eec26d8c7329fcf47394bffb6d13fda39c95ff8c
- Size
  
  80KB
- MD5
  
  af751f552eb2bdc941fa1c9c6da9b12f
- SHA1
  
  241823daabcd3be14acd1e5989b8c51d0dee418c
- SHA256
  
  b7da9b80d0cbe72dca79b2e5eec26d8c7329fcf47394bffb6d13fda39c95ff8c
- SHA512
  
  ae373083385af78988973bb8deb18e0a4e60176d54797c989f293f837e1ff2ed03810079e34f37cec6d81b46964f6f894ba2167c419173713f747b7be5e88cf8
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOr0p9:GhfxHNIreQm+Hi40p9
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2