243d4dbb99d3b78a6e14a4111b36c2ec9751903c7c0d6d6ff6b2d82facc5b83e | Triage

Sharing

General

Target

243d4dbb99d3b78a6e14a4111b36c2ec9751903c7c0d6d6ff6b2d82facc5b83e
Size

83KB
Sample

240524-cqc28ahh24
MD5

3cbe7055ea2b72f255d420f9d1ce679e
SHA1

7b2c56e9e3d7858f3f2ec9b4413f5efc6ad2694d
SHA256

243d4dbb99d3b78a6e14a4111b36c2ec9751903c7c0d6d6ff6b2d82facc5b83e
SHA512

8c493bd871eb36d7034096963141a1a7f324bdcd0e069543cc068396045678e0d6c1db65129582657f69ef6f927b0f007c77f46aac5e62ee85e7dcb1f5e95173
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOsHODH8:GhfxHNIreQm+HivHODH8

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  243d4dbb99d3b78a6e14a4111b36c2ec9751903c7c0d6d6ff6b2d82facc5b83e
- Size
  
  83KB
- MD5
  
  3cbe7055ea2b72f255d420f9d1ce679e
- SHA1
  
  7b2c56e9e3d7858f3f2ec9b4413f5efc6ad2694d
- SHA256
  
  243d4dbb99d3b78a6e14a4111b36c2ec9751903c7c0d6d6ff6b2d82facc5b83e
- SHA512
  
  8c493bd871eb36d7034096963141a1a7f324bdcd0e069543cc068396045678e0d6c1db65129582657f69ef6f927b0f007c77f46aac5e62ee85e7dcb1f5e95173
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOsHODH8:GhfxHNIreQm+HivHODH8
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2