c1b6d7387401e6e4646d9f13fa2b89c04e1871461f206335d37408fa21378a68 | Triage

Sharing

General

Target

c1b6d7387401e6e4646d9f13fa2b89c04e1871461f206335d37408fa21378a68
Size

86KB
Sample

240521-xzt3baff7y
MD5

984a8b4ee6f5425191eeda95b1df5171
SHA1

bc86ab126d2e4bde6844cff5a7a03dcccec09be8
SHA256

c1b6d7387401e6e4646d9f13fa2b89c04e1871461f206335d37408fa21378a68
SHA512

b988b89aa9d542b9457941f2d4da3a7e457e5ec89eaecebc4a09cd0075ac92a6390d145cc17d7751c4832f2fe13dbf2640b1f7fff18497e5673c9de76f1f104e
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOVKbvVQFv2B9d:GhfxHNIreQm+HiuKbvVQFv2B9d

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  c1b6d7387401e6e4646d9f13fa2b89c04e1871461f206335d37408fa21378a68
- Size
  
  86KB
- MD5
  
  984a8b4ee6f5425191eeda95b1df5171
- SHA1
  
  bc86ab126d2e4bde6844cff5a7a03dcccec09be8
- SHA256
  
  c1b6d7387401e6e4646d9f13fa2b89c04e1871461f206335d37408fa21378a68
- SHA512
  
  b988b89aa9d542b9457941f2d4da3a7e457e5ec89eaecebc4a09cd0075ac92a6390d145cc17d7751c4832f2fe13dbf2640b1f7fff18497e5673c9de76f1f104e
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOVKbvVQFv2B9d:GhfxHNIreQm+HiuKbvVQFv2B9d
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2