f1736d2df5184c5f076b522de328845b7e7b32d81ac05aa2c03daf6096bc45f4 | Triage

Sharing

General

Target

f1736d2df5184c5f076b522de328845b7e7b32d81ac05aa2c03daf6096bc45f4
Size

249KB
Sample

240421-e5w5rabc46
MD5

858c2faf6e30e22a3538ca9a8f16594f
SHA1

e737b62c01bb087998634ed824d13c6692a8ddfa
SHA256

f1736d2df5184c5f076b522de328845b7e7b32d81ac05aa2c03daf6096bc45f4
SHA512

255ece43bf5142004daef79f78ad8238803a1df4a65c044ef8cbc07029c7e5812b1c309cd7640124976a748dca3b091709b289c6b972c75a45bda26a50a7dfa0
SSDEEP

3072:MRAhhcsxgAJuK7bZD01GoI0ONtNmlngmx5MOatnF0TWLwFqoLnbrfZ2wYdc87jbt:MRAhhJxX7bNIFlvWLcDffZMX31L7

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  f1736d2df5184c5f076b522de328845b7e7b32d81ac05aa2c03daf6096bc45f4
- Size
  
  249KB
- MD5
  
  858c2faf6e30e22a3538ca9a8f16594f
- SHA1
  
  e737b62c01bb087998634ed824d13c6692a8ddfa
- SHA256
  
  f1736d2df5184c5f076b522de328845b7e7b32d81ac05aa2c03daf6096bc45f4
- SHA512
  
  255ece43bf5142004daef79f78ad8238803a1df4a65c044ef8cbc07029c7e5812b1c309cd7640124976a748dca3b091709b289c6b972c75a45bda26a50a7dfa0
- SSDEEP
  
  3072:MRAhhcsxgAJuK7bZD01GoI0ONtNmlngmx5MOatnF0TWLwFqoLnbrfZ2wYdc87jbt:MRAhhJxX7bNIFlvWLcDffZMX31L7
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Executes dropped EXE
- Modifies system executable filetype association
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Change Default File Association

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2