232c082c75a639812e2f9026917fe80e3536964ddd23c78ce894e2a6607e5b7a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

232c082c75a639812e2f9026917fe80e3536964ddd23c78ce894e2a6607e5b7a
Size

76KB
Sample

240611-qtg28sydmb
MD5

a8b9e862b1d24e9e0b6048d310dd51ba
SHA1

5489c0a8a33b382d3542a24366173ad5362eb9cf
SHA256

232c082c75a639812e2f9026917fe80e3536964ddd23c78ce894e2a6607e5b7a
SHA512

779ebcf04da8f5dd00394ca80b30bd244004e7db2eefd2133c0dfd639ac6b2b47661ae194b6b3c3166ff2409853ae523d5fd564722e46b108c2f53509dde4c39
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOX:RshfSWHHNvoLqNwDDGw02eQmh0HjWOX

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  232c082c75a639812e2f9026917fe80e3536964ddd23c78ce894e2a6607e5b7a
- Size
  
  76KB
- MD5
  
  a8b9e862b1d24e9e0b6048d310dd51ba
- SHA1
  
  5489c0a8a33b382d3542a24366173ad5362eb9cf
- SHA256
  
  232c082c75a639812e2f9026917fe80e3536964ddd23c78ce894e2a6607e5b7a
- SHA512
  
  779ebcf04da8f5dd00394ca80b30bd244004e7db2eefd2133c0dfd639ac6b2b47661ae194b6b3c3166ff2409853ae523d5fd564722e46b108c2f53509dde4c39
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOX:RshfSWHHNvoLqNwDDGw02eQmh0HjWOX
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2