979ef03fe7973016449f1b8b4ece9346338dee8bb045feb68e202d7dbaeb4491 | Triage

Sharing

General

Target

979ef03fe7973016449f1b8b4ece9346338dee8bb045feb68e202d7dbaeb4491
Size

75KB
Sample

240705-k2drwsyaph
MD5

1cc619082d82b8d07e25d291c764a7a3
SHA1

d532fb46fd430be43a2112b489c1460e5deb9347
SHA256

979ef03fe7973016449f1b8b4ece9346338dee8bb045feb68e202d7dbaeb4491
SHA512

c761894b8b1fa1aafc6e38251885ebfb2099fbcd4e481d907bb4d674ebf519f8cfeaec91f43fd0e6f1d1c9540abb3e0b3341f6c24dd58e5ef152cb6e99bb4df7
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOSpu:GhfxHNIreQm+Hi9pu

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  979ef03fe7973016449f1b8b4ece9346338dee8bb045feb68e202d7dbaeb4491
- Size
  
  75KB
- MD5
  
  1cc619082d82b8d07e25d291c764a7a3
- SHA1
  
  d532fb46fd430be43a2112b489c1460e5deb9347
- SHA256
  
  979ef03fe7973016449f1b8b4ece9346338dee8bb045feb68e202d7dbaeb4491
- SHA512
  
  c761894b8b1fa1aafc6e38251885ebfb2099fbcd4e481d907bb4d674ebf519f8cfeaec91f43fd0e6f1d1c9540abb3e0b3341f6c24dd58e5ef152cb6e99bb4df7
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOSpu:GhfxHNIreQm+Hi9pu
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2