97a49c5981332e4da9957f169202d338833e38dda4a79d23b81a0fdbf261a031 | Triage

Sharing

General

Target

97a49c5981332e4da9957f169202d338833e38dda4a79d23b81a0fdbf261a031
Size

86KB
Sample

240611-w49g5awhpn
MD5

61398f20be120275caf68d3af5e2c196
SHA1

971eadac8c2f4fc0375520e1d9a8d8ca8483ce60
SHA256

97a49c5981332e4da9957f169202d338833e38dda4a79d23b81a0fdbf261a031
SHA512

54a4c611e33a74ec0bf85bf32015c302b52a4337fe11147691529110da66d081e7fecfce6492041709cdcedcdc57c2ae7329ffcd87f85ca86b3111be9c3f58f2
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOxJaLVJSq3Va:GhfxHNIreQm+HiSJaLVJSq3Va

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  97a49c5981332e4da9957f169202d338833e38dda4a79d23b81a0fdbf261a031
- Size
  
  86KB
- MD5
  
  61398f20be120275caf68d3af5e2c196
- SHA1
  
  971eadac8c2f4fc0375520e1d9a8d8ca8483ce60
- SHA256
  
  97a49c5981332e4da9957f169202d338833e38dda4a79d23b81a0fdbf261a031
- SHA512
  
  54a4c611e33a74ec0bf85bf32015c302b52a4337fe11147691529110da66d081e7fecfce6492041709cdcedcdc57c2ae7329ffcd87f85ca86b3111be9c3f58f2
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOxJaLVJSq3Va:GhfxHNIreQm+HiSJaLVJSq3Va
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2