df0fbb1fcb1014a8e512ea272d9fd627f6c9a7f6cc022743a100419fb67603d6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df0fbb1fcb1014a8e512ea272d9fd627f6c9a7f6cc022743a100419fb67603d6
Size

79KB
Sample

240602-2gmbzahd9y
MD5

9504486ecd1e88834343d27ce890d0e2
SHA1

d2cdc0f269e1b6a861eeb765fb966bf873d5271d
SHA256

df0fbb1fcb1014a8e512ea272d9fd627f6c9a7f6cc022743a100419fb67603d6
SHA512

25087979c91ca57bd6ca47252ef5efe91ee20fc76388b9c3835b769938bbfbe01d04ecec4abbaf89f219212c0dd5f61fd9788fd4dc8c5d7ab14e737bba72b452
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOyOh:GhfxHNIreQm+HiXOh

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  df0fbb1fcb1014a8e512ea272d9fd627f6c9a7f6cc022743a100419fb67603d6
- Size
  
  79KB
- MD5
  
  9504486ecd1e88834343d27ce890d0e2
- SHA1
  
  d2cdc0f269e1b6a861eeb765fb966bf873d5271d
- SHA256
  
  df0fbb1fcb1014a8e512ea272d9fd627f6c9a7f6cc022743a100419fb67603d6
- SHA512
  
  25087979c91ca57bd6ca47252ef5efe91ee20fc76388b9c3835b769938bbfbe01d04ecec4abbaf89f219212c0dd5f61fd9788fd4dc8c5d7ab14e737bba72b452
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOyOh:GhfxHNIreQm+HiXOh
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2