b3111490a3101e1765077dd5841983a1e3d5a1ad833ef43fecf4a581fbe3798d | Triage

Sharing

General

Target

b3111490a3101e1765077dd5841983a1e3d5a1ad833ef43fecf4a581fbe3798d
Size

75KB
Sample

240605-bwgrxsah64
MD5

390740fe6db9be4431f3fd0e0c2a3ba6
SHA1

ba2060ab400d4e9bd4c4f4518963e3d00f0fa4e0
SHA256

b3111490a3101e1765077dd5841983a1e3d5a1ad833ef43fecf4a581fbe3798d
SHA512

f950466bfc690637eddce9176fcd776532814773b8184811cde519363f09ecbd3ef9d8204eec4a7c746d09c100902a491c4d66a0d511c5495209dbb1be8285f8
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO6bE:GhfxHNIreQm+HiXbE

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  b3111490a3101e1765077dd5841983a1e3d5a1ad833ef43fecf4a581fbe3798d
- Size
  
  75KB
- MD5
  
  390740fe6db9be4431f3fd0e0c2a3ba6
- SHA1
  
  ba2060ab400d4e9bd4c4f4518963e3d00f0fa4e0
- SHA256
  
  b3111490a3101e1765077dd5841983a1e3d5a1ad833ef43fecf4a581fbe3798d
- SHA512
  
  f950466bfc690637eddce9176fcd776532814773b8184811cde519363f09ecbd3ef9d8204eec4a7c746d09c100902a491c4d66a0d511c5495209dbb1be8285f8
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO6bE:GhfxHNIreQm+HiXbE
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2