319a058d8587bd5219c57a6de735936c3ced815dc24c8c3b7a3c9917a45cf830 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

319a058d8587bd5219c57a6de735936c3ced815dc24c8c3b7a3c9917a45cf830
Size

77KB
Sample

231015-cftbfsee84
MD5

46573db960c1d8d4f4ccd5e901020562
SHA1

383e587cb2cecdf78e30f26790ed5c0444d006ca
SHA256

319a058d8587bd5219c57a6de735936c3ced815dc24c8c3b7a3c9917a45cf830
SHA512

0400bd89e0f38cbce9299c35d7676cbc77eda839d1af860b450c95997fbf8ec48793139f22a296ed1747fa665fe60303ab7860eeebeaa5208386285c6eb61629
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOrwPw:GhfxHNIreQm+HiCwPw

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  319a058d8587bd5219c57a6de735936c3ced815dc24c8c3b7a3c9917a45cf830
- Size
  
  77KB
- MD5
  
  46573db960c1d8d4f4ccd5e901020562
- SHA1
  
  383e587cb2cecdf78e30f26790ed5c0444d006ca
- SHA256
  
  319a058d8587bd5219c57a6de735936c3ced815dc24c8c3b7a3c9917a45cf830
- SHA512
  
  0400bd89e0f38cbce9299c35d7676cbc77eda839d1af860b450c95997fbf8ec48793139f22a296ed1747fa665fe60303ab7860eeebeaa5208386285c6eb61629
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOrwPw:GhfxHNIreQm+HiCwPw
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2