0e6a0962c68e077d464142b192261a3124247731f164b44399bc8b105ed98123 | Triage

Sharing

General

Target

0e6a0962c68e077d464142b192261a3124247731f164b44399bc8b105ed98123
Size

82KB
Sample

240912-vc94xavalj
MD5

25f30802b0a2b55bd8830a8dfcfd2a64
SHA1

41e9609f395dd5fc2e44eda17a4430cc0914ebe3
SHA256

0e6a0962c68e077d464142b192261a3124247731f164b44399bc8b105ed98123
SHA512

410739b325c9904c18879c80902ed9b68a1469654c458d0fa909625834f85bc877db063006f5fde2f133db69659d7f7559a9c69ce9739f9b348ba260d428e205
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOhZGNwpYUDU:GhfxHNIreQm+HiKZGNwpYUDU

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  0e6a0962c68e077d464142b192261a3124247731f164b44399bc8b105ed98123
- Size
  
  82KB
- MD5
  
  25f30802b0a2b55bd8830a8dfcfd2a64
- SHA1
  
  41e9609f395dd5fc2e44eda17a4430cc0914ebe3
- SHA256
  
  0e6a0962c68e077d464142b192261a3124247731f164b44399bc8b105ed98123
- SHA512
  
  410739b325c9904c18879c80902ed9b68a1469654c458d0fa909625834f85bc877db063006f5fde2f133db69659d7f7559a9c69ce9739f9b348ba260d428e205
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOhZGNwpYUDU:GhfxHNIreQm+HiKZGNwpYUDU
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence