9a74f18e210ecee6a405041243a27785271e8f00ced540aac62adb1fa6c3c2f5 | Triage

Sharing

General

Target

9a74f18e210ecee6a405041243a27785271e8f00ced540aac62adb1fa6c3c2f5
Size

75KB
Sample

240528-3n5ybshc6y
MD5

7ce1f30d03fb258a14e3513848181bc9
SHA1

dc8f2d8953329cd606e4f6f0c3c09b20b1a2e8b4
SHA256

9a74f18e210ecee6a405041243a27785271e8f00ced540aac62adb1fa6c3c2f5
SHA512

65e5fa79a07100767214eec75f335f395b92f3af908f59effd711b935255ff4d4d85e4633b68e3dca2457a2659889db01b7c37c1d2b7056fd4ec18873370c5df
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOk3:RshfSWHHNvoLqNwDDGw02eQmh0HjWOk3

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  9a74f18e210ecee6a405041243a27785271e8f00ced540aac62adb1fa6c3c2f5
- Size
  
  75KB
- MD5
  
  7ce1f30d03fb258a14e3513848181bc9
- SHA1
  
  dc8f2d8953329cd606e4f6f0c3c09b20b1a2e8b4
- SHA256
  
  9a74f18e210ecee6a405041243a27785271e8f00ced540aac62adb1fa6c3c2f5
- SHA512
  
  65e5fa79a07100767214eec75f335f395b92f3af908f59effd711b935255ff4d4d85e4633b68e3dca2457a2659889db01b7c37c1d2b7056fd4ec18873370c5df
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOk3:RshfSWHHNvoLqNwDDGw02eQmh0HjWOk3
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2