fbf16fb6d21488f2319fe567debf32927b4456f84f3bd8e470bf7b1b1b2e1e53 | Triage

Sharing

General

Target

fbf16fb6d21488f2319fe567debf32927b4456f84f3bd8e470bf7b1b1b2e1e53
Size

76KB
Sample

240605-x7grysgd44
MD5

784ccb4a311f970bfe8be300cdcc2e44
SHA1

c516cc7b4f2f8ca1f48479cb6a5f90684e954278
SHA256

fbf16fb6d21488f2319fe567debf32927b4456f84f3bd8e470bf7b1b1b2e1e53
SHA512

7be434a5871dc37977ec5699676e5af4168b6cde16b0c50ffefd8548f56f3e8e86eb737f7b483eedf6a8530eb9d1296699b25a8828bc9d94d2f766fbac1efbdd
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO3uI:GhfxHNIreQm+HiauI

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  fbf16fb6d21488f2319fe567debf32927b4456f84f3bd8e470bf7b1b1b2e1e53
- Size
  
  76KB
- MD5
  
  784ccb4a311f970bfe8be300cdcc2e44
- SHA1
  
  c516cc7b4f2f8ca1f48479cb6a5f90684e954278
- SHA256
  
  fbf16fb6d21488f2319fe567debf32927b4456f84f3bd8e470bf7b1b1b2e1e53
- SHA512
  
  7be434a5871dc37977ec5699676e5af4168b6cde16b0c50ffefd8548f56f3e8e86eb737f7b483eedf6a8530eb9d1296699b25a8828bc9d94d2f766fbac1efbdd
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO3uI:GhfxHNIreQm+HiauI
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2