6c4e99e4c2015fd479d34cf045369b92fc9b750640590dc24fd11fd0ae14df2b | Triage

Sharing

General

Target

6c4e99e4c2015fd479d34cf045369b92fc9b750640590dc24fd11fd0ae14df2b
Size

79KB
Sample

240613-hgykfssbmn
MD5

ad05c2215711193f2a29e3060275f5c6
SHA1

143dc9168dd8a1c0d42865555c65de7023857057
SHA256

6c4e99e4c2015fd479d34cf045369b92fc9b750640590dc24fd11fd0ae14df2b
SHA512

ee4ddf5264858ef20080dbe279d04b83bb912ed41473a504a42852285be859fecd0775f6059c393d5e57860c122c759c78f83d59830c1c1bcab50d11c32194ff
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWODSSB:GhfxHNIreQm+HiYSSB

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  6c4e99e4c2015fd479d34cf045369b92fc9b750640590dc24fd11fd0ae14df2b
- Size
  
  79KB
- MD5
  
  ad05c2215711193f2a29e3060275f5c6
- SHA1
  
  143dc9168dd8a1c0d42865555c65de7023857057
- SHA256
  
  6c4e99e4c2015fd479d34cf045369b92fc9b750640590dc24fd11fd0ae14df2b
- SHA512
  
  ee4ddf5264858ef20080dbe279d04b83bb912ed41473a504a42852285be859fecd0775f6059c393d5e57860c122c759c78f83d59830c1c1bcab50d11c32194ff
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWODSSB:GhfxHNIreQm+HiYSSB
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2