9425e7eeebfd475b92e0bb107f2ccd1fb12c31fc9b76cfb5bf0be51b6f577677 | Triage

Sharing

General

Target

9425e7eeebfd475b92e0bb107f2ccd1fb12c31fc9b76cfb5bf0be51b6f577677
Size

79KB
Sample

240522-z71k6shd22
MD5

0c1ef2e26a158bc0940392547ed6ce6b
SHA1

198ba0501699d64a941feba85a324d698361447c
SHA256

9425e7eeebfd475b92e0bb107f2ccd1fb12c31fc9b76cfb5bf0be51b6f577677
SHA512

0c7386e6818a07cffff270725232e8a22da4833ced4af0b16cf0d2c559a39a66373e24158ba1512d0d6824705b869db26813de283edef6ad94af5b1d17d54eb4
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOB8:RshfSWHHNvoLqNwDDGw02eQmh0HjWOXu

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  9425e7eeebfd475b92e0bb107f2ccd1fb12c31fc9b76cfb5bf0be51b6f577677
- Size
  
  79KB
- MD5
  
  0c1ef2e26a158bc0940392547ed6ce6b
- SHA1
  
  198ba0501699d64a941feba85a324d698361447c
- SHA256
  
  9425e7eeebfd475b92e0bb107f2ccd1fb12c31fc9b76cfb5bf0be51b6f577677
- SHA512
  
  0c7386e6818a07cffff270725232e8a22da4833ced4af0b16cf0d2c559a39a66373e24158ba1512d0d6824705b869db26813de283edef6ad94af5b1d17d54eb4
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOB8:RshfSWHHNvoLqNwDDGw02eQmh0HjWOXu
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2