5626b334db70ed76ff4d5b3bf1d70c2ada56b7ea8db86ed49fd932de9ed560d3 | Triage

Sharing

General

Target

5626b334db70ed76ff4d5b3bf1d70c2ada56b7ea8db86ed49fd932de9ed560d3
Size

748KB
Sample

240410-aexalsag69
MD5

a96de9e54a528f930e7c6c00149fceb1
SHA1

ca5179e5e9163f29ba9a75dd5b2525dafc385d31
SHA256

5626b334db70ed76ff4d5b3bf1d70c2ada56b7ea8db86ed49fd932de9ed560d3
SHA512

8fb7078cb15e96f425064e1330e0aa8364e5eb56fa2b31675bb64319582ee2d8983697317ae7089944a30ae13cd747e56163f2c6fcf4caf3d85e821195c77f29
SSDEEP

12288:dR9XeTegd6VlKQa/s35D/NyoUUrhNjRVR6vVs:LEKg6lFa/s39ozyRVR6ds

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5626b334db70ed76ff4d5b3bf1d70c2ada56b7ea8db86ed49fd932de9ed560d3
- Size
  
  748KB
- MD5
  
  a96de9e54a528f930e7c6c00149fceb1
- SHA1
  
  ca5179e5e9163f29ba9a75dd5b2525dafc385d31
- SHA256
  
  5626b334db70ed76ff4d5b3bf1d70c2ada56b7ea8db86ed49fd932de9ed560d3
- SHA512
  
  8fb7078cb15e96f425064e1330e0aa8364e5eb56fa2b31675bb64319582ee2d8983697317ae7089944a30ae13cd747e56163f2c6fcf4caf3d85e821195c77f29
- SSDEEP
  
  12288:dR9XeTegd6VlKQa/s35D/NyoUUrhNjRVR6vVs:LEKg6lFa/s39ozyRVR6ds
Score

7^/10

persistence
- Modifies system executable filetype association
  persistence
- Registers COM server for autorun
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Change Default File Association

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2