4ee6b9a9a12dc75385b8e0fa61ad66a0a9153b5823552dbc69c4dcef8af6f3bb | Triage

Sharing

General

Target

4ee6b9a9a12dc75385b8e0fa61ad66a0a9153b5823552dbc69c4dcef8af6f3bb
Size

79KB
Sample

240612-2lahzaxckn
MD5

22f586428a23d8a3813a74bad16a63be
SHA1

407c4ad67298c5670488cf46c2e6811f0dbacb80
SHA256

4ee6b9a9a12dc75385b8e0fa61ad66a0a9153b5823552dbc69c4dcef8af6f3bb
SHA512

6716369581e8b9af9c649f0fb30de3d555bfb542c8ad32a25cc7c77c4974010a129388167873d3ff1f943f7859caa2ed38dc550d23cc84671a087bdbb27c972c
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOFV:GhfxHNIreQm+HiCV

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  4ee6b9a9a12dc75385b8e0fa61ad66a0a9153b5823552dbc69c4dcef8af6f3bb
- Size
  
  79KB
- MD5
  
  22f586428a23d8a3813a74bad16a63be
- SHA1
  
  407c4ad67298c5670488cf46c2e6811f0dbacb80
- SHA256
  
  4ee6b9a9a12dc75385b8e0fa61ad66a0a9153b5823552dbc69c4dcef8af6f3bb
- SHA512
  
  6716369581e8b9af9c649f0fb30de3d555bfb542c8ad32a25cc7c77c4974010a129388167873d3ff1f943f7859caa2ed38dc550d23cc84671a087bdbb27c972c
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOFV:GhfxHNIreQm+HiCV
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2