1b49b943563df68409df41815e2a3377228eb6ae283e6024a5c05494b13af400 | Triage

Sharing

General

Target

1b49b943563df68409df41815e2a3377228eb6ae283e6024a5c05494b13af400
Size

81KB
Sample

240515-exzwnshb37
MD5

ab24cd0704fae929b2c791b6dfeaa20e
SHA1

fc496346ee63807fa8bde273ab8436615c02b2ad
SHA256

1b49b943563df68409df41815e2a3377228eb6ae283e6024a5c05494b13af400
SHA512

74da09fef5345435dd6bfde5b9bffd64d143c4550fb15918a9007dee608d7fdbbe1ad349d495512ff1da585a374d9ccaadf63ed164d89dd27accb099a7859adf
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOP6GMJr:GhfxHNIreQm+Hik6GMJr

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1b49b943563df68409df41815e2a3377228eb6ae283e6024a5c05494b13af400
- Size
  
  81KB
- MD5
  
  ab24cd0704fae929b2c791b6dfeaa20e
- SHA1
  
  fc496346ee63807fa8bde273ab8436615c02b2ad
- SHA256
  
  1b49b943563df68409df41815e2a3377228eb6ae283e6024a5c05494b13af400
- SHA512
  
  74da09fef5345435dd6bfde5b9bffd64d143c4550fb15918a9007dee608d7fdbbe1ad349d495512ff1da585a374d9ccaadf63ed164d89dd27accb099a7859adf
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOP6GMJr:GhfxHNIreQm+Hik6GMJr
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2