501e2e935a748a6ca8b93a7430538871339ad867e9064523607818c2b7405bee | Triage

Sharing

General

Target

501e2e935a748a6ca8b93a7430538871339ad867e9064523607818c2b7405bee
Size

84KB
Sample

240528-fhms8sfb3y
MD5

bb34e19bcb5a9cabc242df84aae4a4b6
SHA1

e509b00f7de4e5f5e562e4f6fefeb80229271805
SHA256

501e2e935a748a6ca8b93a7430538871339ad867e9064523607818c2b7405bee
SHA512

dd025ed58572a630727e2392b6a3e3fa6989a2098dc519fcbbb420c14b095fe00680afecec0ec5773982992282bf296a6a05bb8cd7fef11c6708e24c10d59b75
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOriOp48Zs:GhfxHNIreQm+HiAiOp48Zs

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  501e2e935a748a6ca8b93a7430538871339ad867e9064523607818c2b7405bee
- Size
  
  84KB
- MD5
  
  bb34e19bcb5a9cabc242df84aae4a4b6
- SHA1
  
  e509b00f7de4e5f5e562e4f6fefeb80229271805
- SHA256
  
  501e2e935a748a6ca8b93a7430538871339ad867e9064523607818c2b7405bee
- SHA512
  
  dd025ed58572a630727e2392b6a3e3fa6989a2098dc519fcbbb420c14b095fe00680afecec0ec5773982992282bf296a6a05bb8cd7fef11c6708e24c10d59b75
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOriOp48Zs:GhfxHNIreQm+HiAiOp48Zs
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2