8345448dc9a83789b8bbb18edf41d03e1e0d5e34c5cb1ae96a153c6752fadfcb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8345448dc9a83789b8bbb18edf41d03e1e0d5e34c5cb1ae96a153c6752fadfcb
Size

81KB
Sample

240608-c1enssgf44
MD5

0638b9d5da4dfdb55ab294499813b93b
SHA1

9b0eae0a06671cf1866da8ae52f231f2fd99511b
SHA256

8345448dc9a83789b8bbb18edf41d03e1e0d5e34c5cb1ae96a153c6752fadfcb
SHA512

3c7495ecbc2e77e369c7c1c8906b2ace4646610effe564f05cfbb47a79affcb29177af340eb798026ba74ad3072aba2ac992fcc8c9a46708f844d77ce37b6c47
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWODJZ:GhfxHNIreQm+HimJZ

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  8345448dc9a83789b8bbb18edf41d03e1e0d5e34c5cb1ae96a153c6752fadfcb
- Size
  
  81KB
- MD5
  
  0638b9d5da4dfdb55ab294499813b93b
- SHA1
  
  9b0eae0a06671cf1866da8ae52f231f2fd99511b
- SHA256
  
  8345448dc9a83789b8bbb18edf41d03e1e0d5e34c5cb1ae96a153c6752fadfcb
- SHA512
  
  3c7495ecbc2e77e369c7c1c8906b2ace4646610effe564f05cfbb47a79affcb29177af340eb798026ba74ad3072aba2ac992fcc8c9a46708f844d77ce37b6c47
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWODJZ:GhfxHNIreQm+HimJZ
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2