2e3b753447ccd7d4a766dce1392d884fc6a3632d858f77ad19465a6504708ae6 | Triage

Sharing

General

Target

WebModuleBrowser.exe
Size

7.4MB
Sample

240624-h7bhlszhrc
MD5

833de83d9255cbf8460b1c5847de8d4b
SHA1

b31ec31d0663802b21ea2aeed37377460025a6da
SHA256

2e3b753447ccd7d4a766dce1392d884fc6a3632d858f77ad19465a6504708ae6
SHA512

8bb0e6591fdb344f9b1d55cc78937ad4ae2205294f0d67553a80c73a3c8fbc5bdb23b87eb1f433ee0017e76423b5ee7d96217e7234c2b0ba599500361f67e736
SSDEEP

98304:8iKKwZccnGtg57ET+AjfN7TBrHJWGs2NyqeoNE/7SRYY2VymGu/m6zHAlA64TRRn:8RZccQFZ9TVHJack+YlGlSRRbCvU

Score

8^/10

discovery execution

Malware Config

Targets

- Target
  
  WebModuleBrowser.exe
- Size
  
  7.4MB
- MD5
  
  833de83d9255cbf8460b1c5847de8d4b
- SHA1
  
  b31ec31d0663802b21ea2aeed37377460025a6da
- SHA256
  
  2e3b753447ccd7d4a766dce1392d884fc6a3632d858f77ad19465a6504708ae6
- SHA512
  
  8bb0e6591fdb344f9b1d55cc78937ad4ae2205294f0d67553a80c73a3c8fbc5bdb23b87eb1f433ee0017e76423b5ee7d96217e7234c2b0ba599500361f67e736
- SSDEEP
  
  98304:8iKKwZccnGtg57ET+AjfN7TBrHJWGs2NyqeoNE/7SRYY2VymGu/m6zHAlA64TRRn:8RZccQFZ9TVHJack+YlGlSRRbCvU
Score

8^/10

discovery execution
- Command and Scripting Interpreter: PowerShell
  Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.
  execution
- Modifies file permissions
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryexecution