a2a5e61747acd70615e8538cd1e60a2c5a13e4d42a0e89fd030ac228b9dfa377 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2a5e61747acd70615e8538cd1e60a2c5a13e4d42a0e89fd030ac228b9dfa377
Size

75KB
Sample

240418-kbeaqsfh88
MD5

3be02027f7230401eee3c3ecd61f7414
SHA1

f2109f49988b492f7b7cfe30a204ea1aafe12f1a
SHA256

a2a5e61747acd70615e8538cd1e60a2c5a13e4d42a0e89fd030ac228b9dfa377
SHA512

0a0b348112983a845f3a708491b1ba6916a5c2c69e1485346b6e4c4d0e1ef6c8273dda1693c007cde463634524a8e072581536ff2ee5b49838b7bda383ba664a
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOyh:RshfSWHHNvoLqNwDDGw02eQmh0HjWOy

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  a2a5e61747acd70615e8538cd1e60a2c5a13e4d42a0e89fd030ac228b9dfa377
- Size
  
  75KB
- MD5
  
  3be02027f7230401eee3c3ecd61f7414
- SHA1
  
  f2109f49988b492f7b7cfe30a204ea1aafe12f1a
- SHA256
  
  a2a5e61747acd70615e8538cd1e60a2c5a13e4d42a0e89fd030ac228b9dfa377
- SHA512
  
  0a0b348112983a845f3a708491b1ba6916a5c2c69e1485346b6e4c4d0e1ef6c8273dda1693c007cde463634524a8e072581536ff2ee5b49838b7bda383ba664a
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOyh:RshfSWHHNvoLqNwDDGw02eQmh0HjWOy
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2