92844e78a8706c8ff862f80686914bd8d2b134c6a196e1cb5b80ac076ed38a8d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

92844e78a8706c8ff862f80686914bd8d2b134c6a196e1cb5b80ac076ed38a8d
Size

81KB
Sample

240603-nnlgcsec43
MD5

9c8c4a2ab5df32b62fea1200abf4a390
SHA1

413d7d7f97b8fac5d43d2635d7abc47c8326d931
SHA256

92844e78a8706c8ff862f80686914bd8d2b134c6a196e1cb5b80ac076ed38a8d
SHA512

96f11efff7e7253897aa6d4c0c5c591c6dc1b3b7456d11d28b40062762a0872e8202ab4a5eee63a5404582e4f6c16390b395226fe2e710a49fe9151adcce8c22
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOxe9y:GhfxHNIreQm+Hike9y

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  92844e78a8706c8ff862f80686914bd8d2b134c6a196e1cb5b80ac076ed38a8d
- Size
  
  81KB
- MD5
  
  9c8c4a2ab5df32b62fea1200abf4a390
- SHA1
  
  413d7d7f97b8fac5d43d2635d7abc47c8326d931
- SHA256
  
  92844e78a8706c8ff862f80686914bd8d2b134c6a196e1cb5b80ac076ed38a8d
- SHA512
  
  96f11efff7e7253897aa6d4c0c5c591c6dc1b3b7456d11d28b40062762a0872e8202ab4a5eee63a5404582e4f6c16390b395226fe2e710a49fe9151adcce8c22
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOxe9y:GhfxHNIreQm+Hike9y
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2