308fd3901607de1f0f18b4bd11b0694ba2245feb6afa2efb1ca2d2bf6134f888 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

308fd3901607de1f0f18b4bd11b0694ba2245feb6afa2efb1ca2d2bf6134f888
Size

89KB
Sample

240816-znm6qszejl
MD5

9f123e978e18c011fb807bf1dcee38fd
SHA1

67a0f15ece824642847d46975f28cc6069993a0a
SHA256

308fd3901607de1f0f18b4bd11b0694ba2245feb6afa2efb1ca2d2bf6134f888
SHA512

b3788d43ca387bac16817d582c51e6e9bb86c89e654e415bcd89ecb342e6b33698140c4aa0ced55f7351e82b4f0ef6b87c23bf70df81257cb60580155d2cb3c7
SSDEEP

768:JgO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD77aXKynF0vgcYZUaO0hm:eshfSWHHNvoLqNwDDGwCegcLaO0hm

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  308fd3901607de1f0f18b4bd11b0694ba2245feb6afa2efb1ca2d2bf6134f888
- Size
  
  89KB
- MD5
  
  9f123e978e18c011fb807bf1dcee38fd
- SHA1
  
  67a0f15ece824642847d46975f28cc6069993a0a
- SHA256
  
  308fd3901607de1f0f18b4bd11b0694ba2245feb6afa2efb1ca2d2bf6134f888
- SHA512
  
  b3788d43ca387bac16817d582c51e6e9bb86c89e654e415bcd89ecb342e6b33698140c4aa0ced55f7351e82b4f0ef6b87c23bf70df81257cb60580155d2cb3c7
- SSDEEP
  
  768:JgO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD77aXKynF0vgcYZUaO0hm:eshfSWHHNvoLqNwDDGwCegcLaO0hm
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence