8073210bdbfeb058c84f0d91d1acd3e3c5ec41fa0b4fa7833bbffb10c1507914 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8073210bdbfeb058c84f0d91d1acd3e3c5ec41fa0b4fa7833bbffb10c1507914
Size

83KB
Sample

240528-ehr8aadh3s
MD5

0e58fd14ed4054e46be25806ba73da34
SHA1

2cdb5926aef6720cd242f3fd349bdab7f1ad838f
SHA256

8073210bdbfeb058c84f0d91d1acd3e3c5ec41fa0b4fa7833bbffb10c1507914
SHA512

3bfe1b1999959439709f118f92203df748b7aa53f78a37fbd87a4e858fe3a8ca033ce4e889c4ffe517ffe3426f145bfa6237231edbf89235ff1c6aa2eb422cca
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWORwhn+hWV:GhfxHNIreQm+HiGwhn+hWV

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  8073210bdbfeb058c84f0d91d1acd3e3c5ec41fa0b4fa7833bbffb10c1507914
- Size
  
  83KB
- MD5
  
  0e58fd14ed4054e46be25806ba73da34
- SHA1
  
  2cdb5926aef6720cd242f3fd349bdab7f1ad838f
- SHA256
  
  8073210bdbfeb058c84f0d91d1acd3e3c5ec41fa0b4fa7833bbffb10c1507914
- SHA512
  
  3bfe1b1999959439709f118f92203df748b7aa53f78a37fbd87a4e858fe3a8ca033ce4e889c4ffe517ffe3426f145bfa6237231edbf89235ff1c6aa2eb422cca
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWORwhn+hWV:GhfxHNIreQm+HiGwhn+hWV
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2