44d1f830c7722b20cd31338105fdbaa60b39471a8540b0c310f039ed14b09554 | Triage

Sharing

General

Target

44d1f830c7722b20cd31338105fdbaa60b39471a8540b0c310f039ed14b09554
Size

80KB
Sample

240425-csptssdg6w
MD5

ecb5d3ab296e31c5a0e3f135f4286632
SHA1

11cf60a1fd1a1c07576617d9bd7f9903a2852d3c
SHA256

44d1f830c7722b20cd31338105fdbaa60b39471a8540b0c310f039ed14b09554
SHA512

ce7a6e61e47812b2ea334370512bade4e2396889b487b4f69bbe3958edad8b7b12cb6a03f1f9037484dfbaa6809456697e31f3766f695dad6d14419010ae24bd
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO1LJj:GhfxHNIreQm+HigLJj

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  44d1f830c7722b20cd31338105fdbaa60b39471a8540b0c310f039ed14b09554
- Size
  
  80KB
- MD5
  
  ecb5d3ab296e31c5a0e3f135f4286632
- SHA1
  
  11cf60a1fd1a1c07576617d9bd7f9903a2852d3c
- SHA256
  
  44d1f830c7722b20cd31338105fdbaa60b39471a8540b0c310f039ed14b09554
- SHA512
  
  ce7a6e61e47812b2ea334370512bade4e2396889b487b4f69bbe3958edad8b7b12cb6a03f1f9037484dfbaa6809456697e31f3766f695dad6d14419010ae24bd
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO1LJj:GhfxHNIreQm+HigLJj
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2