d87e9298945c1c2080f6f0dbd5dcade3512b6d240f87aa2eebbb9c8c3c0e75b3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d87e9298945c1c2080f6f0dbd5dcade3512b6d240f87aa2eebbb9c8c3c0e75b3
Size

76KB
Sample

240126-e8pvvaece2
MD5

4579bbe96a66a9cd538b1fa3e571b2ce
SHA1

2082efa3a91a6cd45969241457a097049529433a
SHA256

d87e9298945c1c2080f6f0dbd5dcade3512b6d240f87aa2eebbb9c8c3c0e75b3
SHA512

8f0f38ca18013b2379a0b9e6bc4d9df1a4b23c6a2e3bc7e19402c2d0a36126e98320b874646ad4f67ac171b7bc28c2947ae4cbe559e30e7ac73db606c47c5df6
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOHVi:GhfxHNIreQm+HiAVi

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  d87e9298945c1c2080f6f0dbd5dcade3512b6d240f87aa2eebbb9c8c3c0e75b3
- Size
  
  76KB
- MD5
  
  4579bbe96a66a9cd538b1fa3e571b2ce
- SHA1
  
  2082efa3a91a6cd45969241457a097049529433a
- SHA256
  
  d87e9298945c1c2080f6f0dbd5dcade3512b6d240f87aa2eebbb9c8c3c0e75b3
- SHA512
  
  8f0f38ca18013b2379a0b9e6bc4d9df1a4b23c6a2e3bc7e19402c2d0a36126e98320b874646ad4f67ac171b7bc28c2947ae4cbe559e30e7ac73db606c47c5df6
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOHVi:GhfxHNIreQm+HiAVi
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2