b0d576fc286758b9ab902d309ce1ba74df072d923a434cfd0be9595da5fcdd0d | Triage

Sharing

General

Target

b0d576fc286758b9ab902d309ce1ba74df072d923a434cfd0be9595da5fcdd0d
Size

78KB
Sample

240421-j4855seg83
MD5

24267e3370b9312986d2c799ae228306
SHA1

5740fd004c73cb12cb74bf9fa4fcc48f980078f3
SHA256

b0d576fc286758b9ab902d309ce1ba74df072d923a434cfd0be9595da5fcdd0d
SHA512

b2644182a502a07ba53b77f1eb81cf5cd2190c211039204c5dc8ce74d2a11f61de403069a6d3b4ec9f37971f35d50865fe2f6c6d587f6651ca16104b867563e4
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOmhAN:GhfxHNIreQm+HiphAN

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  b0d576fc286758b9ab902d309ce1ba74df072d923a434cfd0be9595da5fcdd0d
- Size
  
  78KB
- MD5
  
  24267e3370b9312986d2c799ae228306
- SHA1
  
  5740fd004c73cb12cb74bf9fa4fcc48f980078f3
- SHA256
  
  b0d576fc286758b9ab902d309ce1ba74df072d923a434cfd0be9595da5fcdd0d
- SHA512
  
  b2644182a502a07ba53b77f1eb81cf5cd2190c211039204c5dc8ce74d2a11f61de403069a6d3b4ec9f37971f35d50865fe2f6c6d587f6651ca16104b867563e4
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOmhAN:GhfxHNIreQm+HiphAN
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2