a6de05b0d57315f8dcbdd3637cb257e5470af2def7dabb38d7a9871934739508 | Triage

Sharing

General

Target

a6de05b0d57315f8dcbdd3637cb257e5470af2def7dabb38d7a9871934739508
Size

84KB
Sample

240521-3dr9gsde51
MD5

d211b916b08f3d31fe61935813a76a7d
SHA1

83ea9f0958a9de05ca7ab30dec4e37e5e8658e19
SHA256

a6de05b0d57315f8dcbdd3637cb257e5470af2def7dabb38d7a9871934739508
SHA512

24f0cae7645f3379b0f28bb020c8d932a020309c1da5c21ad5a6238118ecced7bbd5b0eb77cff976a3506f25fba700c162b6af190a3042500370378de8e1bb23
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOOLISl82ojt:GhfxHNIreQm+Hi1LISl82ojt

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  a6de05b0d57315f8dcbdd3637cb257e5470af2def7dabb38d7a9871934739508
- Size
  
  84KB
- MD5
  
  d211b916b08f3d31fe61935813a76a7d
- SHA1
  
  83ea9f0958a9de05ca7ab30dec4e37e5e8658e19
- SHA256
  
  a6de05b0d57315f8dcbdd3637cb257e5470af2def7dabb38d7a9871934739508
- SHA512
  
  24f0cae7645f3379b0f28bb020c8d932a020309c1da5c21ad5a6238118ecced7bbd5b0eb77cff976a3506f25fba700c162b6af190a3042500370378de8e1bb23
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOOLISl82ojt:GhfxHNIreQm+Hi1LISl82ojt
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2