5af1318f7ee0b2486abc182278187f47d629db5c3d50fbcae52cf8bd95cbdb52 | Triage

Sharing

General

Target

5af1318f7ee0b2486abc182278187f47d629db5c3d50fbcae52cf8bd95cbdb52
Size

75KB
Sample

231013-e3qvysdh91
MD5

d786ccfa46c600bad10d33820be873a5
SHA1

60fe71133bfdac76c1e4880d84bdcccc13221952
SHA256

5af1318f7ee0b2486abc182278187f47d629db5c3d50fbcae52cf8bd95cbdb52
SHA512

4144332c7eadf9011397c3ee0a031411b46311473a1c0d60b22ed2f03a30279d6620a77faa28da5f776bc84f699712b0384ce459d8797310d1f7e542518ad8a8
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOpa:RshfSWHHNvoLqNwDDGw02eQmh0HjWOpa

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5af1318f7ee0b2486abc182278187f47d629db5c3d50fbcae52cf8bd95cbdb52
- Size
  
  75KB
- MD5
  
  d786ccfa46c600bad10d33820be873a5
- SHA1
  
  60fe71133bfdac76c1e4880d84bdcccc13221952
- SHA256
  
  5af1318f7ee0b2486abc182278187f47d629db5c3d50fbcae52cf8bd95cbdb52
- SHA512
  
  4144332c7eadf9011397c3ee0a031411b46311473a1c0d60b22ed2f03a30279d6620a77faa28da5f776bc84f699712b0384ce459d8797310d1f7e542518ad8a8
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOpa:RshfSWHHNvoLqNwDDGw02eQmh0HjWOpa
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2