ae40d0b175870a11adb1fa3d9ec17ce6edd3e2daef5afa1202d8bef7d08cc335 | Triage

Sharing

General

Target

ae40d0b175870a11adb1fa3d9ec17ce6edd3e2daef5afa1202d8bef7d08cc335
Size

77KB
Sample

240531-haq7ssah36
MD5

f5997e9fa0254777e5ed3f63915054cf
SHA1

1cd03573fb15e9d687a5c3befd099ff4739fac1f
SHA256

ae40d0b175870a11adb1fa3d9ec17ce6edd3e2daef5afa1202d8bef7d08cc335
SHA512

98c105e0632848d86b972260aeffa1d4624d2efaa309c2da66fd4d2a0fb7df4b4cb15784152c088f15dc3c782bdd3fb9b95088262afb17483d580c0c5099b07b
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO6Zi:GhfxHNIreQm+Hi5Zi

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  ae40d0b175870a11adb1fa3d9ec17ce6edd3e2daef5afa1202d8bef7d08cc335
- Size
  
  77KB
- MD5
  
  f5997e9fa0254777e5ed3f63915054cf
- SHA1
  
  1cd03573fb15e9d687a5c3befd099ff4739fac1f
- SHA256
  
  ae40d0b175870a11adb1fa3d9ec17ce6edd3e2daef5afa1202d8bef7d08cc335
- SHA512
  
  98c105e0632848d86b972260aeffa1d4624d2efaa309c2da66fd4d2a0fb7df4b4cb15784152c088f15dc3c782bdd3fb9b95088262afb17483d580c0c5099b07b
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO6Zi:GhfxHNIreQm+Hi5Zi
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2