d4310fa2c99c105f60c6d13e99de9f6fa9b82fbea896fb43799114cf050f8b68 | Triage

Sharing

General

Target

d4310fa2c99c105f60c6d13e99de9f6fa9b82fbea896fb43799114cf050f8b68
Size

73KB
Sample

240520-rl8qnadd82
MD5

1953b14330530151e83fae043a7c7a3f
SHA1

ff7efd2e281c109b918c5077e91db1b92248e8d1
SHA256

d4310fa2c99c105f60c6d13e99de9f6fa9b82fbea896fb43799114cf050f8b68
SHA512

b9d046ec5cab3ff038a1855b37dad82aff710c01b379be82c8c740b739cb25bfa1b82a7960279b86bc1eb7552b308289f19344cea41d0fe1e50fdb78dcb1174c
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWO4:RshfSWHHNvoLqNwDDGw02eQmh0HjWO4

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  d4310fa2c99c105f60c6d13e99de9f6fa9b82fbea896fb43799114cf050f8b68
- Size
  
  73KB
- MD5
  
  1953b14330530151e83fae043a7c7a3f
- SHA1
  
  ff7efd2e281c109b918c5077e91db1b92248e8d1
- SHA256
  
  d4310fa2c99c105f60c6d13e99de9f6fa9b82fbea896fb43799114cf050f8b68
- SHA512
  
  b9d046ec5cab3ff038a1855b37dad82aff710c01b379be82c8c740b739cb25bfa1b82a7960279b86bc1eb7552b308289f19344cea41d0fe1e50fdb78dcb1174c
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWO4:RshfSWHHNvoLqNwDDGw02eQmh0HjWO4
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2