deb0df3106493d996bc16f9c843e0da2f815baec1aec9570d12c6f5b4705b730 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

deb0df3106493d996bc16f9c843e0da2f815baec1aec9570d12c6f5b4705b730
Size

79KB
Sample

240822-y4ec4aydrn
MD5

8445388b586965e8ff108a7772a47d74
SHA1

e060a88e54d3953446d7cc78a20d6f61a7e3b16d
SHA256

deb0df3106493d996bc16f9c843e0da2f815baec1aec9570d12c6f5b4705b730
SHA512

89679e69a82af3d8b509da5dd131cff3222064bce129fdf151041dd27336bafc2964a0abb5e62b8c24bb5db660cc4a2c9d4b2bfda4ddbc19745c688df2ceaf9c
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOnOjwLQ8d8R8Bm:GhfxHNIreQm+HikOYDm

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  deb0df3106493d996bc16f9c843e0da2f815baec1aec9570d12c6f5b4705b730
- Size
  
  79KB
- MD5
  
  8445388b586965e8ff108a7772a47d74
- SHA1
  
  e060a88e54d3953446d7cc78a20d6f61a7e3b16d
- SHA256
  
  deb0df3106493d996bc16f9c843e0da2f815baec1aec9570d12c6f5b4705b730
- SHA512
  
  89679e69a82af3d8b509da5dd131cff3222064bce129fdf151041dd27336bafc2964a0abb5e62b8c24bb5db660cc4a2c9d4b2bfda4ddbc19745c688df2ceaf9c
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOnOjwLQ8d8R8Bm:GhfxHNIreQm+HikOYDm
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence