85f3b7c77a02ea5e030e8637fc75d13996cbbcd13e6f2eae1e1ece5de8fc3a72 | Triage

Sharing

General

Target

85f3b7c77a02ea5e030e8637fc75d13996cbbcd13e6f2eae1e1ece5de8fc3a72
Size

76KB
Sample

240605-x81w8afd9v
MD5

b40459c4643e2cfb354aaf8f673cbbff
SHA1

64d8ad8cf0d4efb2361d18a0d23210090d8de302
SHA256

85f3b7c77a02ea5e030e8637fc75d13996cbbcd13e6f2eae1e1ece5de8fc3a72
SHA512

78463d3fddf5b8d25634bd2afafccc1407d2bef7c128a600ace1823e6167da543212599de642374092fad3e924423472f27a1a4735443f092770891e8a93ec5e
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOpWAg:GhfxHNIreQm+HiaWAg

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  85f3b7c77a02ea5e030e8637fc75d13996cbbcd13e6f2eae1e1ece5de8fc3a72
- Size
  
  76KB
- MD5
  
  b40459c4643e2cfb354aaf8f673cbbff
- SHA1
  
  64d8ad8cf0d4efb2361d18a0d23210090d8de302
- SHA256
  
  85f3b7c77a02ea5e030e8637fc75d13996cbbcd13e6f2eae1e1ece5de8fc3a72
- SHA512
  
  78463d3fddf5b8d25634bd2afafccc1407d2bef7c128a600ace1823e6167da543212599de642374092fad3e924423472f27a1a4735443f092770891e8a93ec5e
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOpWAg:GhfxHNIreQm+HiaWAg
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2