e003b9ab60a0ecd5528e9de8d6f5846138cb5d1e79d63e513b480f79da59db57 | Triage

Sharing

General

Target

e003b9ab60a0ecd5528e9de8d6f5846138cb5d1e79d63e513b480f79da59db57
Size

73KB
Sample

240610-e4g97scg54
MD5

36a0c576ea687f2b0ffc6ff094d1f6e2
SHA1

d7fdf6561d3cac7057a7dd2aa64c89278bd906b4
SHA256

e003b9ab60a0ecd5528e9de8d6f5846138cb5d1e79d63e513b480f79da59db57
SHA512

a10e9f92aa03a0b69382e006c776eba00cf7e8a9d0f6897b2aa78ee0374cfc0b749616bb341c534f1f25c6e9d326f5b9203577f0a7a1cb3ee0cf90a04e05c8fd
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOE:RshfSWHHNvoLqNwDDGw02eQmh0HjWOE

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  e003b9ab60a0ecd5528e9de8d6f5846138cb5d1e79d63e513b480f79da59db57
- Size
  
  73KB
- MD5
  
  36a0c576ea687f2b0ffc6ff094d1f6e2
- SHA1
  
  d7fdf6561d3cac7057a7dd2aa64c89278bd906b4
- SHA256
  
  e003b9ab60a0ecd5528e9de8d6f5846138cb5d1e79d63e513b480f79da59db57
- SHA512
  
  a10e9f92aa03a0b69382e006c776eba00cf7e8a9d0f6897b2aa78ee0374cfc0b749616bb341c534f1f25c6e9d326f5b9203577f0a7a1cb3ee0cf90a04e05c8fd
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOE:RshfSWHHNvoLqNwDDGw02eQmh0HjWOE
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2