3a2158dc91d86cbd8497983e5764c25ea84a91aae7af34e3d2c13c5b3de08e37 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a2158dc91d86cbd8497983e5764c25ea84a91aae7af34e3d2c13c5b3de08e37
Size

75KB
Sample

240610-3gtxgsvhqj
MD5

e2d9f072b262f39de9ec30bad9dfb0ba
SHA1

74ba47eeaa96baa9f471b54cc96a18c4584cecc0
SHA256

3a2158dc91d86cbd8497983e5764c25ea84a91aae7af34e3d2c13c5b3de08e37
SHA512

ecb05f3059013555423820ac9b27a57cd257414c9b23b79624e7bafc3809a589abbbfdec49ab166bac05768940d10a75ac116e2a4c4b1fb55a5389519594b18b
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOGh5:GhfxHNIreQm+Hidh5

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3a2158dc91d86cbd8497983e5764c25ea84a91aae7af34e3d2c13c5b3de08e37
- Size
  
  75KB
- MD5
  
  e2d9f072b262f39de9ec30bad9dfb0ba
- SHA1
  
  74ba47eeaa96baa9f471b54cc96a18c4584cecc0
- SHA256
  
  3a2158dc91d86cbd8497983e5764c25ea84a91aae7af34e3d2c13c5b3de08e37
- SHA512
  
  ecb05f3059013555423820ac9b27a57cd257414c9b23b79624e7bafc3809a589abbbfdec49ab166bac05768940d10a75ac116e2a4c4b1fb55a5389519594b18b
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOGh5:GhfxHNIreQm+Hidh5
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2