accb294d4398085d1913df4b8f0641e425a3d1816ae16c21cb9fc636c488fe80 | Triage

Sharing

General

Target

accb294d4398085d1913df4b8f0641e425a3d1816ae16c21cb9fc636c488fe80
Size

79KB
Sample

240603-haylwaeg61
MD5

1c735fc28f2cfcca56d4767c443493d9
SHA1

0fe1407d0e0937b8fc4154c6ec87e76e92c86c81
SHA256

accb294d4398085d1913df4b8f0641e425a3d1816ae16c21cb9fc636c488fe80
SHA512

4d3c7b6d8015afa9a59607281bfb58b65a48db61a29ded74e6330fa8ac3db0dc42e1826d31275f79c7d348019fdd56376fc3803a707076de52c2619a3e450962
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOptkz:GhfxHNIreQm+Hi2tkz

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  accb294d4398085d1913df4b8f0641e425a3d1816ae16c21cb9fc636c488fe80
- Size
  
  79KB
- MD5
  
  1c735fc28f2cfcca56d4767c443493d9
- SHA1
  
  0fe1407d0e0937b8fc4154c6ec87e76e92c86c81
- SHA256
  
  accb294d4398085d1913df4b8f0641e425a3d1816ae16c21cb9fc636c488fe80
- SHA512
  
  4d3c7b6d8015afa9a59607281bfb58b65a48db61a29ded74e6330fa8ac3db0dc42e1826d31275f79c7d348019fdd56376fc3803a707076de52c2619a3e450962
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOptkz:GhfxHNIreQm+Hi2tkz
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2