b2a40f27de644a0a463c281792a24bbfff9bfc57f596bad9cebd6bc4eeabeceb | Triage

Sharing

General

Target

b2a40f27de644a0a463c281792a24bbfff9bfc57f596bad9cebd6bc4eeabeceb
Size

81KB
Sample

240604-c1fabsah89
MD5

40c746820016e968f8457d60aa63632a
SHA1

bd59435f4b44c95a577d2b8a60de22ced3b86ada
SHA256

b2a40f27de644a0a463c281792a24bbfff9bfc57f596bad9cebd6bc4eeabeceb
SHA512

735a39573af74df9536614e18dbb87c7060498d5502b84ce6ec69526a1f358a26347ab957a64e1d12f1c9fdde1bfa324d125bbd7784747bf51a151140accf628
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOtxytmvj:GhfxHNIreQm+HiWxytmvj

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  b2a40f27de644a0a463c281792a24bbfff9bfc57f596bad9cebd6bc4eeabeceb
- Size
  
  81KB
- MD5
  
  40c746820016e968f8457d60aa63632a
- SHA1
  
  bd59435f4b44c95a577d2b8a60de22ced3b86ada
- SHA256
  
  b2a40f27de644a0a463c281792a24bbfff9bfc57f596bad9cebd6bc4eeabeceb
- SHA512
  
  735a39573af74df9536614e18dbb87c7060498d5502b84ce6ec69526a1f358a26347ab957a64e1d12f1c9fdde1bfa324d125bbd7784747bf51a151140accf628
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOtxytmvj:GhfxHNIreQm+HiWxytmvj
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2