65f28d18e2c219904eb3baa7d528c71a1451f0cc27dead50bcc2ef0e2a399a71 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

65f28d18e2c219904eb3baa7d528c71a1451f0cc27dead50bcc2ef0e2a399a71
Size

75KB
Sample

240524-l2ke4sdc54
MD5

f928d79ee0dadb881c6507e6215f9c24
SHA1

6acd05c8611d13e33f6ce0688a644912a8f3fcfd
SHA256

65f28d18e2c219904eb3baa7d528c71a1451f0cc27dead50bcc2ef0e2a399a71
SHA512

4a9160abed63d99c9e3db499a1b5fb4b0bb0eb86b053bf4902e37b6dd83f0a63679042274a0e6a45ea8ab6a2c003e79bdfbb9457bc26cc9c85dfe70f2758a632
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOUd:RshfSWHHNvoLqNwDDGw02eQmh0HjWOU

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  65f28d18e2c219904eb3baa7d528c71a1451f0cc27dead50bcc2ef0e2a399a71
- Size
  
  75KB
- MD5
  
  f928d79ee0dadb881c6507e6215f9c24
- SHA1
  
  6acd05c8611d13e33f6ce0688a644912a8f3fcfd
- SHA256
  
  65f28d18e2c219904eb3baa7d528c71a1451f0cc27dead50bcc2ef0e2a399a71
- SHA512
  
  4a9160abed63d99c9e3db499a1b5fb4b0bb0eb86b053bf4902e37b6dd83f0a63679042274a0e6a45ea8ab6a2c003e79bdfbb9457bc26cc9c85dfe70f2758a632
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOUd:RshfSWHHNvoLqNwDDGw02eQmh0HjWOU
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2