1a20c2015a1d9f8500bf09dd833407aed37d9cecc5041ca4d24ab6ae3fcb4a04 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1a20c2015a1d9f8500bf09dd833407aed37d9cecc5041ca4d24ab6ae3fcb4a04
Size

5.5MB
Sample

240319-wm7xzaae49
MD5

6d3f2bbd3b6f7afaaa4e0e2053494f0c
SHA1

a45352bc753493d6a4ab45c030788807cf2b31c9
SHA256

1a20c2015a1d9f8500bf09dd833407aed37d9cecc5041ca4d24ab6ae3fcb4a04
SHA512

6bbdeca0a28b9ec97a0d2b8894f43815f91500421f1d574b28bcdb7a7880ff3abb21aa55eca79144a886002b59b1a8e6aba24371735a2edbae3a12fb05b083d5
SSDEEP

98304:0oP63OXWSFtO6i8/p2mJ49cacUodRedrFjs/V+dA+hAtJ1G7NtriHLap0fEE:04iiY8/p98cUodRe64A+Cd6cLapS

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  1a20c2015a1d9f8500bf09dd833407aed37d9cecc5041ca4d24ab6ae3fcb4a04
- Size
  
  5.5MB
- MD5
  
  6d3f2bbd3b6f7afaaa4e0e2053494f0c
- SHA1
  
  a45352bc753493d6a4ab45c030788807cf2b31c9
- SHA256
  
  1a20c2015a1d9f8500bf09dd833407aed37d9cecc5041ca4d24ab6ae3fcb4a04
- SHA512
  
  6bbdeca0a28b9ec97a0d2b8894f43815f91500421f1d574b28bcdb7a7880ff3abb21aa55eca79144a886002b59b1a8e6aba24371735a2edbae3a12fb05b083d5
- SSDEEP
  
  98304:0oP63OXWSFtO6i8/p2mJ49cacUodRedrFjs/V+dA+hAtJ1G7NtriHLap0fEE:04iiY8/p98cUodRe64A+Cd6cLapS
Score

8^/10

persistence
- Sets file execution options in registry
  persistence
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Change Default File Association

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2