f46596ff3b3e6b8a7ba02f47cfe913c855bc9c001a247aabf451e34fadfb348d | Triage

Sharing

General

Target

f46596ff3b3e6b8a7ba02f47cfe913c855bc9c001a247aabf451e34fadfb348d
Size

82KB
Sample

240814-g764vayalh
MD5

da4501cc9a922dec1e219a8eb0557cb8
SHA1

024c4b91c0496602db1fe199fd606e3533bd5987
SHA256

f46596ff3b3e6b8a7ba02f47cfe913c855bc9c001a247aabf451e34fadfb348d
SHA512

6899b6e5e1cf84629c60e5bbd2c581e1f820f21e637f726e5e58c5794f991a7b88e9d42088125ab8e7cb9c81e3e82978d869c46b9c934ceaa78431d9d09c09f9
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOCabCaEXIJHlst+V:GhfxHNIreQm+HipabCaE4z2C

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  f46596ff3b3e6b8a7ba02f47cfe913c855bc9c001a247aabf451e34fadfb348d
- Size
  
  82KB
- MD5
  
  da4501cc9a922dec1e219a8eb0557cb8
- SHA1
  
  024c4b91c0496602db1fe199fd606e3533bd5987
- SHA256
  
  f46596ff3b3e6b8a7ba02f47cfe913c855bc9c001a247aabf451e34fadfb348d
- SHA512
  
  6899b6e5e1cf84629c60e5bbd2c581e1f820f21e637f726e5e58c5794f991a7b88e9d42088125ab8e7cb9c81e3e82978d869c46b9c934ceaa78431d9d09c09f9
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOCabCaEXIJHlst+V:GhfxHNIreQm+HipabCaE4z2C
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence