d7952c8d2f99275812ba2dac244ad961c512d6ecaea2881aa2201c31f342d360 | Triage

Sharing

General

Target

d7952c8d2f99275812ba2dac244ad961c512d6ecaea2881aa2201c31f342d360
Size

77KB
Sample

240907-tzkl4ashjp
MD5

35fe0769072ae771bfac057080f35e3a
SHA1

88df4ecf058efbf403923502eb2c46dc9129ccc8
SHA256

d7952c8d2f99275812ba2dac244ad961c512d6ecaea2881aa2201c31f342d360
SHA512

38264d410eba1acb67ee863fb6a45af252fa8fe0e11affdda8f963de645b0d66af835e0516beaf6d78ccce8e4a9739ae11a9bb05bc81776a05c50aab65a7deaa
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOtSZ:GhfxHNIreQm+HiKSZ

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  d7952c8d2f99275812ba2dac244ad961c512d6ecaea2881aa2201c31f342d360
- Size
  
  77KB
- MD5
  
  35fe0769072ae771bfac057080f35e3a
- SHA1
  
  88df4ecf058efbf403923502eb2c46dc9129ccc8
- SHA256
  
  d7952c8d2f99275812ba2dac244ad961c512d6ecaea2881aa2201c31f342d360
- SHA512
  
  38264d410eba1acb67ee863fb6a45af252fa8fe0e11affdda8f963de645b0d66af835e0516beaf6d78ccce8e4a9739ae11a9bb05bc81776a05c50aab65a7deaa
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOtSZ:GhfxHNIreQm+HiKSZ
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence