cd4497fe3175e3666484e6efbbe77deeccc78a4b95cc29bfc8214456d987085a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd4497fe3175e3666484e6efbbe77deeccc78a4b95cc29bfc8214456d987085a
Size

74KB
Sample

240418-lmg2fahc74
MD5

f6a1c689ab3cc954a877e9bf1e5c34d3
SHA1

8b7033cb5b44a45feee47cdd6551bb28d3574b66
SHA256

cd4497fe3175e3666484e6efbbe77deeccc78a4b95cc29bfc8214456d987085a
SHA512

0122045b8c1541554543f1346da38e6af2828b1c319cb240b52d5aa2b24c98a82183eb7135acbd83fa66eb4745a6c14fdb9620f6a7dd020f1983b7efeb512280
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOcE:RshfSWHHNvoLqNwDDGw02eQmh0HjWOcE

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  cd4497fe3175e3666484e6efbbe77deeccc78a4b95cc29bfc8214456d987085a
- Size
  
  74KB
- MD5
  
  f6a1c689ab3cc954a877e9bf1e5c34d3
- SHA1
  
  8b7033cb5b44a45feee47cdd6551bb28d3574b66
- SHA256
  
  cd4497fe3175e3666484e6efbbe77deeccc78a4b95cc29bfc8214456d987085a
- SHA512
  
  0122045b8c1541554543f1346da38e6af2828b1c319cb240b52d5aa2b24c98a82183eb7135acbd83fa66eb4745a6c14fdb9620f6a7dd020f1983b7efeb512280
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOcE:RshfSWHHNvoLqNwDDGw02eQmh0HjWOcE
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2