fac85ce7fe2430637d24b40204763e77affb690badf936cfc44e26641c4da9ec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

647ce813d7e9bc1712d82d8db2327460N.exe
Size

45KB
Sample

240720-h7dmzawang
MD5

647ce813d7e9bc1712d82d8db2327460
SHA1

695eab421c2ed9ded029b73ca5919ee569f069c8
SHA256

fac85ce7fe2430637d24b40204763e77affb690badf936cfc44e26641c4da9ec
SHA512

fc53c3b6e7ca89d4a37dc9a3b039f4abfcace0cfa09fa89b816a40b959d5b9dd3c005349fa48dfddc170d9bbdd1ec32221f20810ea0bbdcbab72e0b2cd579323
SSDEEP

768:8V5hy+7c6OXdfwEQ90NoZCi5TXbRzjEDta8jFqjsZvI2YxrQiP+ZRDd+RYTl/iUW:8h7xsCKosi5pzjIcdRiTpqMGxs3sv

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  647ce813d7e9bc1712d82d8db2327460N.exe
- Size
  
  45KB
- MD5
  
  647ce813d7e9bc1712d82d8db2327460
- SHA1
  
  695eab421c2ed9ded029b73ca5919ee569f069c8
- SHA256
  
  fac85ce7fe2430637d24b40204763e77affb690badf936cfc44e26641c4da9ec
- SHA512
  
  fc53c3b6e7ca89d4a37dc9a3b039f4abfcace0cfa09fa89b816a40b959d5b9dd3c005349fa48dfddc170d9bbdd1ec32221f20810ea0bbdcbab72e0b2cd579323
- SSDEEP
  
  768:8V5hy+7c6OXdfwEQ90NoZCi5TXbRzjEDta8jFqjsZvI2YxrQiP+ZRDd+RYTl/iUW:8h7xsCKosi5pzjIcdRiTpqMGxs3sv
Score

8^/10

persistence
- Event Triggered Execution: Image File Execution Options Injection
  persistence
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Image File Execution Options Injection

Privilege Escalation

Event Triggered Execution

Change Default File Association

Image File Execution Options Injection

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2