b9dc1e58009bd04353c3d9ec524578ace60d0dd49709b356c36c969c3b787485 | Triage

Sharing

General

Target

b9dc1e58009bd04353c3d9ec524578ace60d0dd49709b356c36c969c3b787485
Size

81KB
Sample

231112-hk9rwsda7w
MD5

7833a4ae985c56c64bb62456b4cbda71
SHA1

cf320643e8c48cf753fc8c4992526625e1c086c6
SHA256

b9dc1e58009bd04353c3d9ec524578ace60d0dd49709b356c36c969c3b787485
SHA512

e5edcc105922a6774d3d5153dc72a714ec66af98e65b8e5e9a32f98f29f9a4c1fb5018e27d3b8e9f36d31de50b214d97eac1b85ff1eb1978e7ef9702b5bab604
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOoA1cfYf9:GhfxHNIreQm+HiXA1cfYf9

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  b9dc1e58009bd04353c3d9ec524578ace60d0dd49709b356c36c969c3b787485
- Size
  
  81KB
- MD5
  
  7833a4ae985c56c64bb62456b4cbda71
- SHA1
  
  cf320643e8c48cf753fc8c4992526625e1c086c6
- SHA256
  
  b9dc1e58009bd04353c3d9ec524578ace60d0dd49709b356c36c969c3b787485
- SHA512
  
  e5edcc105922a6774d3d5153dc72a714ec66af98e65b8e5e9a32f98f29f9a4c1fb5018e27d3b8e9f36d31de50b214d97eac1b85ff1eb1978e7ef9702b5bab604
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOoA1cfYf9:GhfxHNIreQm+HiXA1cfYf9
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2