a8bf4660bb98a585ba2f603ee258a1b4116839222578d28576fd30f8b6885df3 | Triage

Sharing

General

Target

a8bf4660bb98a585ba2f603ee258a1b4116839222578d28576fd30f8b6885df3
Size

83KB
Sample

240118-d5bclsceh7
MD5

749594fcf8a90c0916774aba4c31551b
SHA1

686f5e43375bab27687a433ed2445abda2a944f1
SHA256

a8bf4660bb98a585ba2f603ee258a1b4116839222578d28576fd30f8b6885df3
SHA512

66ce9283b065aa1ccd62890df63f350b651fc57328b3a26d49bb7db1b57d0cfb9ffbe1ba55f8812e71d990d08b120dd95230abcd75288297a258044015c16c96
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOQvoNm:GhfxHNIreQm+HirvoNm

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  a8bf4660bb98a585ba2f603ee258a1b4116839222578d28576fd30f8b6885df3
- Size
  
  83KB
- MD5
  
  749594fcf8a90c0916774aba4c31551b
- SHA1
  
  686f5e43375bab27687a433ed2445abda2a944f1
- SHA256
  
  a8bf4660bb98a585ba2f603ee258a1b4116839222578d28576fd30f8b6885df3
- SHA512
  
  66ce9283b065aa1ccd62890df63f350b651fc57328b3a26d49bb7db1b57d0cfb9ffbe1ba55f8812e71d990d08b120dd95230abcd75288297a258044015c16c96
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOQvoNm:GhfxHNIreQm+HirvoNm
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2