630789a81b70d3e2ab1166b74ee1d55d71836cea15c676e3c2b75e5d646a7fde | Triage

Sharing

Copy URL Twitter E-mail

General

Target

630789a81b70d3e2ab1166b74ee1d55d71836cea15c676e3c2b75e5d646a7fde
Size

74KB
Sample

240613-xa7xwasamj
MD5

650f9607aa08053f892b43aa92d6b38d
SHA1

95e6dcd14f1943a8e4c9da0de0498ce17dc47c01
SHA256

630789a81b70d3e2ab1166b74ee1d55d71836cea15c676e3c2b75e5d646a7fde
SHA512

e774518f3f4035bb9333e37fca590490bd3ec5f47faa2cbf79da1eba93556c9cc6ea24f0d06a27d154bf7fa0fd4d669fea4425f0c3713406efd66950149ba5ce
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOhz:RshfSWHHNvoLqNwDDGw02eQmh0HjWOhz

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  630789a81b70d3e2ab1166b74ee1d55d71836cea15c676e3c2b75e5d646a7fde
- Size
  
  74KB
- MD5
  
  650f9607aa08053f892b43aa92d6b38d
- SHA1
  
  95e6dcd14f1943a8e4c9da0de0498ce17dc47c01
- SHA256
  
  630789a81b70d3e2ab1166b74ee1d55d71836cea15c676e3c2b75e5d646a7fde
- SHA512
  
  e774518f3f4035bb9333e37fca590490bd3ec5f47faa2cbf79da1eba93556c9cc6ea24f0d06a27d154bf7fa0fd4d669fea4425f0c3713406efd66950149ba5ce
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOhz:RshfSWHHNvoLqNwDDGw02eQmh0HjWOhz
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2