56ebdf6be856006b680088ac9ba9999fbb48f640f7c23b678777890add3d7c9f | Triage

Sharing

General

Target

56ebdf6be856006b680088ac9ba9999fbb48f640f7c23b678777890add3d7c9f
Size

79KB
Sample

240901-f3ptbsseqn
MD5

5e1b563d08572f43d5abe3d9cbb17bdc
SHA1

5ad0adf13e7cf9560945e7bb4699b82261189766
SHA256

56ebdf6be856006b680088ac9ba9999fbb48f640f7c23b678777890add3d7c9f
SHA512

bf91e22995453ad10e61f6c8f2ccdc8708c37635c9f2d545a17df59396fe18af5abdf701eb0bddd9c917e1594bd70c8c21c6eea9ef1fc06b81bc5d8a908bd346
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWO5J:RshfSWHHNvoLqNwDDGw02eQmh0HjWO5J

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  56ebdf6be856006b680088ac9ba9999fbb48f640f7c23b678777890add3d7c9f
- Size
  
  79KB
- MD5
  
  5e1b563d08572f43d5abe3d9cbb17bdc
- SHA1
  
  5ad0adf13e7cf9560945e7bb4699b82261189766
- SHA256
  
  56ebdf6be856006b680088ac9ba9999fbb48f640f7c23b678777890add3d7c9f
- SHA512
  
  bf91e22995453ad10e61f6c8f2ccdc8708c37635c9f2d545a17df59396fe18af5abdf701eb0bddd9c917e1594bd70c8c21c6eea9ef1fc06b81bc5d8a908bd346
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWO5J:RshfSWHHNvoLqNwDDGw02eQmh0HjWO5J
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence