3e902b6f2138e36f29a8151953f6f9e79e89a7c784e184824abfb763a54a6983 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e902b6f2138e36f29a8151953f6f9e79e89a7c784e184824abfb763a54a6983
Size

78KB
Sample

240515-cpffyscd6z
MD5

d730a57fcc16ca5f6c075458d780bead
SHA1

0a8cb9ade6ae2051a0b58c4805feadd325caddc0
SHA256

3e902b6f2138e36f29a8151953f6f9e79e89a7c784e184824abfb763a54a6983
SHA512

662104823b41d68e3a8e7876e75c216d4a6460a930e7884fa2aa36343d2ce34ba84728846958406d22619d60829aa04445832e2a949b8d470e109b1b185b3682
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO/hRfP:GhfxHNIreQm+HiwhRfP

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3e902b6f2138e36f29a8151953f6f9e79e89a7c784e184824abfb763a54a6983
- Size
  
  78KB
- MD5
  
  d730a57fcc16ca5f6c075458d780bead
- SHA1
  
  0a8cb9ade6ae2051a0b58c4805feadd325caddc0
- SHA256
  
  3e902b6f2138e36f29a8151953f6f9e79e89a7c784e184824abfb763a54a6983
- SHA512
  
  662104823b41d68e3a8e7876e75c216d4a6460a930e7884fa2aa36343d2ce34ba84728846958406d22619d60829aa04445832e2a949b8d470e109b1b185b3682
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO/hRfP:GhfxHNIreQm+HiwhRfP
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2