5fb6dbac85c623a77961b5f68a7e08ebd8882fe1e005a1aec831ecc126c531e9 | Triage

Sharing

General

Target

5fb6dbac85c623a77961b5f68a7e08ebd8882fe1e005a1aec831ecc126c531e9
Size

77KB
Sample

240531-havvzsaa4x
MD5

36166cbc220ff39eef3b119788a3b10e
SHA1

697cfb3994ea7f7b37ffc3c8707ef91c5513c9d9
SHA256

5fb6dbac85c623a77961b5f68a7e08ebd8882fe1e005a1aec831ecc126c531e9
SHA512

bc5684f58212b0389b10c2a4e920eb38435044712ddcea103b5cd4c9691951c3820dd38f8210b995b4dca4e4c3f97a74aca1e8b93a60dd7e750172aec01613c5
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWO27:RshfSWHHNvoLqNwDDGw02eQmh0HjWOZ8

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5fb6dbac85c623a77961b5f68a7e08ebd8882fe1e005a1aec831ecc126c531e9
- Size
  
  77KB
- MD5
  
  36166cbc220ff39eef3b119788a3b10e
- SHA1
  
  697cfb3994ea7f7b37ffc3c8707ef91c5513c9d9
- SHA256
  
  5fb6dbac85c623a77961b5f68a7e08ebd8882fe1e005a1aec831ecc126c531e9
- SHA512
  
  bc5684f58212b0389b10c2a4e920eb38435044712ddcea103b5cd4c9691951c3820dd38f8210b995b4dca4e4c3f97a74aca1e8b93a60dd7e750172aec01613c5
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWO27:RshfSWHHNvoLqNwDDGw02eQmh0HjWOZ8
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2