5df30518bfa758746bf41232f04fa27b6c7308b4a2b4c6a20470bea18514917c | Triage

Sharing

General

Target

5df30518bfa758746bf41232f04fa27b6c7308b4a2b4c6a20470bea18514917c
Size

81KB
Sample

240515-cpffysch57
MD5

caec76d938e7bef3e79213ce1d287c15
SHA1

567caf28bf8c6c42ae26f2671c9f5f123f33bd01
SHA256

5df30518bfa758746bf41232f04fa27b6c7308b4a2b4c6a20470bea18514917c
SHA512

c5cdcdcdf2e84ca3dd6ed687f0a9970b6059f1d89be71ce364f9b7c21db3a41ceb80f4910bc19e989362c847a4e634e518883cd7ca23ed6367f58d0fe2df2df3
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOuy:RshfSWHHNvoLqNwDDGw02eQmh0HjWOuy

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5df30518bfa758746bf41232f04fa27b6c7308b4a2b4c6a20470bea18514917c
- Size
  
  81KB
- MD5
  
  caec76d938e7bef3e79213ce1d287c15
- SHA1
  
  567caf28bf8c6c42ae26f2671c9f5f123f33bd01
- SHA256
  
  5df30518bfa758746bf41232f04fa27b6c7308b4a2b4c6a20470bea18514917c
- SHA512
  
  c5cdcdcdf2e84ca3dd6ed687f0a9970b6059f1d89be71ce364f9b7c21db3a41ceb80f4910bc19e989362c847a4e634e518883cd7ca23ed6367f58d0fe2df2df3
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOuy:RshfSWHHNvoLqNwDDGw02eQmh0HjWOuy
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2