d4b7bc7bbd162b0659d6caf32bd3ace1160f229e0ef554e43c2cb7904f2ba996 | Triage

Sharing

General

Target

d4b7bc7bbd162b0659d6caf32bd3ace1160f229e0ef554e43c2cb7904f2ba996
Size

82KB
Sample

240523-fvzcsseh28
MD5

ee4d0f0e340f1d4272f3c72c3c2c799e
SHA1

284cfe2aa44ceb79d07ed4e7acf451c615bf1631
SHA256

d4b7bc7bbd162b0659d6caf32bd3ace1160f229e0ef554e43c2cb7904f2ba996
SHA512

db864a92171fb6b6650518bbe1f09b8d082cc6c79c0bb576824b811691e3971cd1ce7e86f3ba1b415d759a30d35f0cd5182e5dc3a03fca5a4523276ff55b49e5
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOy4FMc:GhfxHNIreQm+HiB4FM

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  d4b7bc7bbd162b0659d6caf32bd3ace1160f229e0ef554e43c2cb7904f2ba996
- Size
  
  82KB
- MD5
  
  ee4d0f0e340f1d4272f3c72c3c2c799e
- SHA1
  
  284cfe2aa44ceb79d07ed4e7acf451c615bf1631
- SHA256
  
  d4b7bc7bbd162b0659d6caf32bd3ace1160f229e0ef554e43c2cb7904f2ba996
- SHA512
  
  db864a92171fb6b6650518bbe1f09b8d082cc6c79c0bb576824b811691e3971cd1ce7e86f3ba1b415d759a30d35f0cd5182e5dc3a03fca5a4523276ff55b49e5
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOy4FMc:GhfxHNIreQm+HiB4FM
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2