20af051a23b9e4d256d1efb36bc72c6a622e556cda5b6f535daccfbcf7d9878d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20af051a23b9e4d256d1efb36bc72c6a622e556cda5b6f535daccfbcf7d9878d
Size

76KB
Sample

240607-as55nsfe33
MD5

f9450b0b6a4c6feedd994ada331d434d
SHA1

b69cc9ea43de9f337a59f7799434a7b17596935e
SHA256

20af051a23b9e4d256d1efb36bc72c6a622e556cda5b6f535daccfbcf7d9878d
SHA512

b370fd0a6ee4bc1d569dda7c37a2f779543c564a4104a42efb1365b8d6caaf0e5d622f9b6d8523db53178e5808474e5a5294e3c27c6aa1cf71d6a170baebd24f
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOrH:GhfxHNIreQm+HiMH

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  20af051a23b9e4d256d1efb36bc72c6a622e556cda5b6f535daccfbcf7d9878d
- Size
  
  76KB
- MD5
  
  f9450b0b6a4c6feedd994ada331d434d
- SHA1
  
  b69cc9ea43de9f337a59f7799434a7b17596935e
- SHA256
  
  20af051a23b9e4d256d1efb36bc72c6a622e556cda5b6f535daccfbcf7d9878d
- SHA512
  
  b370fd0a6ee4bc1d569dda7c37a2f779543c564a4104a42efb1365b8d6caaf0e5d622f9b6d8523db53178e5808474e5a5294e3c27c6aa1cf71d6a170baebd24f
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOrH:GhfxHNIreQm+HiMH
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2