985d9b66f7fae0423d7b5e491d0112a878f5cb7eb22cdc764b588f2d0ca1c383 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

985d9b66f7fae0423d7b5e491d0112a878f5cb7eb22cdc764b588f2d0ca1c383
Size

60KB
Sample

240606-dzj3kage27
MD5

640539b78741291fa4a321ab29a9e4d6
SHA1

c129958745043231a872a217fed636add860113a
SHA256

985d9b66f7fae0423d7b5e491d0112a878f5cb7eb22cdc764b588f2d0ca1c383
SHA512

ca32459c76c95448c0b2a93dcd8bcb964ab4837a567cb779fc84c3f65166946d6cb1edb3b7f3b05f374afc527e2b6369b1a2976510a40d8a909ec0852b541f61
SSDEEP

768:bs0R7nq2r6EfBihDX4T9lWal7X4vEUyRL/9OUdC5N1dy76mL4WIajmY44m4m4m4J:bTRZWEfcZWLHj9HC5NMsjOUK

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  985d9b66f7fae0423d7b5e491d0112a878f5cb7eb22cdc764b588f2d0ca1c383
- Size
  
  60KB
- MD5
  
  640539b78741291fa4a321ab29a9e4d6
- SHA1
  
  c129958745043231a872a217fed636add860113a
- SHA256
  
  985d9b66f7fae0423d7b5e491d0112a878f5cb7eb22cdc764b588f2d0ca1c383
- SHA512
  
  ca32459c76c95448c0b2a93dcd8bcb964ab4837a567cb779fc84c3f65166946d6cb1edb3b7f3b05f374afc527e2b6369b1a2976510a40d8a909ec0852b541f61
- SSDEEP
  
  768:bs0R7nq2r6EfBihDX4T9lWal7X4vEUyRL/9OUdC5N1dy76mL4WIajmY44m4m4m4J:bTRZWEfcZWLHj9HC5NMsjOUK
Score

8^/10

persistence
- Sets file execution options in registry
  persistence
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Change Default File Association

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2