856ef14237c281b043bd0f528961a8f605407028fea248357c6c28e5fa4fc4f0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

856ef14237c281b043bd0f528961a8f605407028fea248357c6c28e5fa4fc4f0
Size

82KB
Sample

240606-e8zeaagg6y
MD5

9afe6ecebaef8c0ff1a89c421d76cdec
SHA1

efa2edb066c509300a98c7fd205ac828ea1ca643
SHA256

856ef14237c281b043bd0f528961a8f605407028fea248357c6c28e5fa4fc4f0
SHA512

487f3ce1a30f40437eb6aa646cdb60bea7712a2376f21ef5378b0be11a44e9199033f66f24b1ab3f959a62a01db4d184d7821cf8e7b92515e7a2215412564014
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWObCESUzjKq6Gsff6:GhfxHNIreQm+Hi4TuZ76

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  856ef14237c281b043bd0f528961a8f605407028fea248357c6c28e5fa4fc4f0
- Size
  
  82KB
- MD5
  
  9afe6ecebaef8c0ff1a89c421d76cdec
- SHA1
  
  efa2edb066c509300a98c7fd205ac828ea1ca643
- SHA256
  
  856ef14237c281b043bd0f528961a8f605407028fea248357c6c28e5fa4fc4f0
- SHA512
  
  487f3ce1a30f40437eb6aa646cdb60bea7712a2376f21ef5378b0be11a44e9199033f66f24b1ab3f959a62a01db4d184d7821cf8e7b92515e7a2215412564014
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWObCESUzjKq6Gsff6:GhfxHNIreQm+Hi4TuZ76
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2