876ae7e4e64448ac10a6ed733a76da3133bcd8db498624cd0b2216daa1406bf8 | Triage

Sharing

General

Target

876ae7e4e64448ac10a6ed733a76da3133bcd8db498624cd0b2216daa1406bf8
Size

79KB
Sample

240427-y23b5sga3s
MD5

87b454cfe302b5de88100fbac03a66e5
SHA1

0c9b7690bcbb24e45366ecc5f532554e4d34e02e
SHA256

876ae7e4e64448ac10a6ed733a76da3133bcd8db498624cd0b2216daa1406bf8
SHA512

b539378cf76e04d8c933b1abfedb37e6b25336e2a85e60699ab49a6e7d00c48b3123ea11d545a6e497ea2a1267f04acc2f026df5b4b4406e866726d5216921e7
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOggTsN:GhfxHNIreQm+HiHgTsN

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  876ae7e4e64448ac10a6ed733a76da3133bcd8db498624cd0b2216daa1406bf8
- Size
  
  79KB
- MD5
  
  87b454cfe302b5de88100fbac03a66e5
- SHA1
  
  0c9b7690bcbb24e45366ecc5f532554e4d34e02e
- SHA256
  
  876ae7e4e64448ac10a6ed733a76da3133bcd8db498624cd0b2216daa1406bf8
- SHA512
  
  b539378cf76e04d8c933b1abfedb37e6b25336e2a85e60699ab49a6e7d00c48b3123ea11d545a6e497ea2a1267f04acc2f026df5b4b4406e866726d5216921e7
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOggTsN:GhfxHNIreQm+HiHgTsN
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2