98be674632c98b37b6e9c5e9ba6566c0e4b15a4e99cd89335a72e34fe7c1259f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98be674632c98b37b6e9c5e9ba6566c0e4b15a4e99cd89335a72e34fe7c1259f
Size

80KB
Sample

240714-lpezvsxgme
MD5

e5662b0030a1bff41ebca946074512eb
SHA1

75f6beeb66744c5841dc88a00da77d9e88ae9e4e
SHA256

98be674632c98b37b6e9c5e9ba6566c0e4b15a4e99cd89335a72e34fe7c1259f
SHA512

7a6b9f34c4a1a973c16b63eb3bb7925ab13f34aa1e2be4aeb39a191dfe6e3f9ac71fb32c2de1816fa86d1bb586a6bc3961edf9bd30af775db7687b0ec544f7ac
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOYHQAiAMQ:GhfxHNIreQm+Hi3HQAiAMQ

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  98be674632c98b37b6e9c5e9ba6566c0e4b15a4e99cd89335a72e34fe7c1259f
- Size
  
  80KB
- MD5
  
  e5662b0030a1bff41ebca946074512eb
- SHA1
  
  75f6beeb66744c5841dc88a00da77d9e88ae9e4e
- SHA256
  
  98be674632c98b37b6e9c5e9ba6566c0e4b15a4e99cd89335a72e34fe7c1259f
- SHA512
  
  7a6b9f34c4a1a973c16b63eb3bb7925ab13f34aa1e2be4aeb39a191dfe6e3f9ac71fb32c2de1816fa86d1bb586a6bc3961edf9bd30af775db7687b0ec544f7ac
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOYHQAiAMQ:GhfxHNIreQm+Hi3HQAiAMQ
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2