f8693fe7dd2add24c69145ba04a14837df1bf7c38c475d46e5bede43a17d6ff0 | Triage

Sharing

General

Target

f8693fe7dd2add24c69145ba04a14837df1bf7c38c475d46e5bede43a17d6ff0
Size

80KB
Sample

240709-qbpz5avgmm
MD5

82af85c2ee08cdff5e14f996f70cc3bb
SHA1

11b407bb9fab4a1fe87bf1f9bf77a1190f89a2e8
SHA256

f8693fe7dd2add24c69145ba04a14837df1bf7c38c475d46e5bede43a17d6ff0
SHA512

8db75ec2c3607084d7e4f9dd1298f7e9f18b8db0db06ee3cd34bf6eff8b68b4185afb1881405afc5c173a4b09611dec083fa8a2b4bd0dc8fa4bd5b6e08e9f0b0
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOdr4apL/:GhfxHNIreQm+Hi+r4apL/

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  f8693fe7dd2add24c69145ba04a14837df1bf7c38c475d46e5bede43a17d6ff0
- Size
  
  80KB
- MD5
  
  82af85c2ee08cdff5e14f996f70cc3bb
- SHA1
  
  11b407bb9fab4a1fe87bf1f9bf77a1190f89a2e8
- SHA256
  
  f8693fe7dd2add24c69145ba04a14837df1bf7c38c475d46e5bede43a17d6ff0
- SHA512
  
  8db75ec2c3607084d7e4f9dd1298f7e9f18b8db0db06ee3cd34bf6eff8b68b4185afb1881405afc5c173a4b09611dec083fa8a2b4bd0dc8fa4bd5b6e08e9f0b0
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOdr4apL/:GhfxHNIreQm+Hi+r4apL/
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2