6b620d72542aa0284b9fda80cd2c860592473ca610be8729e70091baad32c14b | Triage

Sharing

General

Target

03faea08976b2ec65bf9ee79703dc770N.exe
Size

27KB
Sample

240721-yww8yavcrk
MD5

03faea08976b2ec65bf9ee79703dc770
SHA1

6169f9048c91655730e96206b9a7832173263457
SHA256

6b620d72542aa0284b9fda80cd2c860592473ca610be8729e70091baad32c14b
SHA512

55d3ba2b36aaa8fcd5f38acb083a190c3d80fea5d5fc4eecd4b284a51bc7bf998243dacf2e1ab5b6f23a5d9b5c40d3497d0ed739d8f922b7ab4cdf2515007da2
SSDEEP

768:PVEHJqjHyGvwFylDpulVSQJrE/2QmlCYZUbrv:PH2nylslwHCCLP

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  03faea08976b2ec65bf9ee79703dc770N.exe
- Size
  
  27KB
- MD5
  
  03faea08976b2ec65bf9ee79703dc770
- SHA1
  
  6169f9048c91655730e96206b9a7832173263457
- SHA256
  
  6b620d72542aa0284b9fda80cd2c860592473ca610be8729e70091baad32c14b
- SHA512
  
  55d3ba2b36aaa8fcd5f38acb083a190c3d80fea5d5fc4eecd4b284a51bc7bf998243dacf2e1ab5b6f23a5d9b5c40d3497d0ed739d8f922b7ab4cdf2515007da2
- SSDEEP
  
  768:PVEHJqjHyGvwFylDpulVSQJrE/2QmlCYZUbrv:PH2nylslwHCCLP
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2