055cbdf562a70912344eed2d7f62dc0f647edd2627af9fb2a42cec961d25526b | Triage

Sharing

General

Target

055cbdf562a70912344eed2d7f62dc0f647edd2627af9fb2a42cec961d25526b
Size

84KB
Sample

240524-knpx1abf47
MD5

00c7d88caaa5a7514bd06eabdb5dcf05
SHA1

73ee76c26bf2695f8436aa19ff66e4f667acf492
SHA256

055cbdf562a70912344eed2d7f62dc0f647edd2627af9fb2a42cec961d25526b
SHA512

d6d483eda254cee190a3fb2a5332708f1eb2031fe85a7f717591e825a7e70a0f2a45ef1a30201dc04182e258909be0edf007a6c67aca28c9eb557a6d065f98fb
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOU+X3YgS2NYNOquwQ:GhfxHNIreQm+HiJ+X3YgS2NYNOquwQ

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  055cbdf562a70912344eed2d7f62dc0f647edd2627af9fb2a42cec961d25526b
- Size
  
  84KB
- MD5
  
  00c7d88caaa5a7514bd06eabdb5dcf05
- SHA1
  
  73ee76c26bf2695f8436aa19ff66e4f667acf492
- SHA256
  
  055cbdf562a70912344eed2d7f62dc0f647edd2627af9fb2a42cec961d25526b
- SHA512
  
  d6d483eda254cee190a3fb2a5332708f1eb2031fe85a7f717591e825a7e70a0f2a45ef1a30201dc04182e258909be0edf007a6c67aca28c9eb557a6d065f98fb
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOU+X3YgS2NYNOquwQ:GhfxHNIreQm+HiJ+X3YgS2NYNOquwQ
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2