804b7e12cce616752363a3c260e5050d05d1c648696aa645caecbed74672933c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

804b7e12cce616752363a3c260e5050d05d1c648696aa645caecbed74672933c
Size

78KB
Sample

240531-zdtwjace2z
MD5

52dcbf1c20b544bc821844ed3fa625cc
SHA1

4ef9b7bb963a3f994f2883b5bc6e3564e51e6903
SHA256

804b7e12cce616752363a3c260e5050d05d1c648696aa645caecbed74672933c
SHA512

e0b8c289f0c12ca2291a695dde5a7b9953063a6f0469c94ca92e77312ab867e7edc23c33aaabbecd323cc97ac56e696f245c222934c1f543f8d771eec67d13d5
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO/Yr:GhfxHNIreQm+HiCYr

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  804b7e12cce616752363a3c260e5050d05d1c648696aa645caecbed74672933c
- Size
  
  78KB
- MD5
  
  52dcbf1c20b544bc821844ed3fa625cc
- SHA1
  
  4ef9b7bb963a3f994f2883b5bc6e3564e51e6903
- SHA256
  
  804b7e12cce616752363a3c260e5050d05d1c648696aa645caecbed74672933c
- SHA512
  
  e0b8c289f0c12ca2291a695dde5a7b9953063a6f0469c94ca92e77312ab867e7edc23c33aaabbecd323cc97ac56e696f245c222934c1f543f8d771eec67d13d5
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO/Yr:GhfxHNIreQm+HiCYr
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2