4380c9c422889f392edb91f56aa826fff665c55ade181ff04822a63cacd05b06 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4380c9c422889f392edb91f56aa826fff665c55ade181ff04822a63cacd05b06
Size

84KB
Sample

240531-2efreagf34
MD5

e6587e58e7b1be19706a76681fb0a2c2
SHA1

e556533436226dc4a5b6e4b8e4835f9557b81b9a
SHA256

4380c9c422889f392edb91f56aa826fff665c55ade181ff04822a63cacd05b06
SHA512

2e539a8fcfe098daec377a2a0647e476121df98bb89ef98175cf03cca8880a9384149137e686d0d05e4a77ae8fe82bebee086b8dc80b7e2e24f8145191ed14c6
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO+1Cuf32:GhfxHNIreQm+Hiz1Cuf32

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  4380c9c422889f392edb91f56aa826fff665c55ade181ff04822a63cacd05b06
- Size
  
  84KB
- MD5
  
  e6587e58e7b1be19706a76681fb0a2c2
- SHA1
  
  e556533436226dc4a5b6e4b8e4835f9557b81b9a
- SHA256
  
  4380c9c422889f392edb91f56aa826fff665c55ade181ff04822a63cacd05b06
- SHA512
  
  2e539a8fcfe098daec377a2a0647e476121df98bb89ef98175cf03cca8880a9384149137e686d0d05e4a77ae8fe82bebee086b8dc80b7e2e24f8145191ed14c6
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO+1Cuf32:GhfxHNIreQm+Hiz1Cuf32
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2