b21cb61c888781b34292887c656cd185cb7bdfe8eebaedde5626787e2b739335 | Triage

Sharing

General

Target

b21cb61c888781b34292887c656cd185cb7bdfe8eebaedde5626787e2b739335
Size

73KB
Sample

240907-tzhshavfkh
MD5

52341d3d4b85e6139243d00f7d1cfb08
SHA1

bc7e9ac48679e9984dcdb5122776e603e142e37a
SHA256

b21cb61c888781b34292887c656cd185cb7bdfe8eebaedde5626787e2b739335
SHA512

fd825d117a80e6ebc585f5aae2302e1eac627b933bfebb4fabb30f418641642005e6128596c0f7c0ce586a0200275b1a84e4d1d8233ba28150520db0508b087d
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOk:RshfSWHHNvoLqNwDDGw02eQmh0HjWOk

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  b21cb61c888781b34292887c656cd185cb7bdfe8eebaedde5626787e2b739335
- Size
  
  73KB
- MD5
  
  52341d3d4b85e6139243d00f7d1cfb08
- SHA1
  
  bc7e9ac48679e9984dcdb5122776e603e142e37a
- SHA256
  
  b21cb61c888781b34292887c656cd185cb7bdfe8eebaedde5626787e2b739335
- SHA512
  
  fd825d117a80e6ebc585f5aae2302e1eac627b933bfebb4fabb30f418641642005e6128596c0f7c0ce586a0200275b1a84e4d1d8233ba28150520db0508b087d
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOk:RshfSWHHNvoLqNwDDGw02eQmh0HjWOk
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence