36488a2365f331fcfb5fc83a989b4bcd9a33d1ba4190e89d474eceb2942fc2bd | Triage

Sharing

General

Target

36488a2365f331fcfb5fc83a989b4bcd9a33d1ba4190e89d474eceb2942fc2bd
Size

83KB
Sample

240524-d35hnsbe74
MD5

b61a193bd0d0a490df14fa1f4747760a
SHA1

aaca3491a486d0a9c3afff430b5db2d8df8510b6
SHA256

36488a2365f331fcfb5fc83a989b4bcd9a33d1ba4190e89d474eceb2942fc2bd
SHA512

f974ed7bf700710020a2107d6e233c428a82cbcd1f8f1db5a740f12d40b744078786a33fc08a4e384aed28f491a6cc7a11b8694913a1679d14668d4d2a7f64d1
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOyO6JuQEM8+:GhfxHNIreQm+HiVO6JuQEM8+

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  36488a2365f331fcfb5fc83a989b4bcd9a33d1ba4190e89d474eceb2942fc2bd
- Size
  
  83KB
- MD5
  
  b61a193bd0d0a490df14fa1f4747760a
- SHA1
  
  aaca3491a486d0a9c3afff430b5db2d8df8510b6
- SHA256
  
  36488a2365f331fcfb5fc83a989b4bcd9a33d1ba4190e89d474eceb2942fc2bd
- SHA512
  
  f974ed7bf700710020a2107d6e233c428a82cbcd1f8f1db5a740f12d40b744078786a33fc08a4e384aed28f491a6cc7a11b8694913a1679d14668d4d2a7f64d1
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOyO6JuQEM8+:GhfxHNIreQm+HiVO6JuQEM8+
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2