be58a027ae8df7933a92acd5190c1e2775c3e4137e126fd1456b01c0b4a6f069 | Triage

Sharing

General

Target

b042426e8a30b6ecf6e44f2b21138560N
Size

82KB
Sample

240914-wk9nsaxfng
MD5

b042426e8a30b6ecf6e44f2b21138560
SHA1

99f9e5a21b4719cb9b4627897d398fe083e8cade
SHA256

be58a027ae8df7933a92acd5190c1e2775c3e4137e126fd1456b01c0b4a6f069
SHA512

dc86c047cd17d27832cdbf2ded7f65fa93047622d9b87ace822fd9d5dc2586aed086f1b67f23708d4336b955df9d87b42eb52dfe4682432d3b8730a98cfca4e5
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOzr9/q9:GhfxHNIreQm+Hi8r9/q9

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  b042426e8a30b6ecf6e44f2b21138560N
- Size
  
  82KB
- MD5
  
  b042426e8a30b6ecf6e44f2b21138560
- SHA1
  
  99f9e5a21b4719cb9b4627897d398fe083e8cade
- SHA256
  
  be58a027ae8df7933a92acd5190c1e2775c3e4137e126fd1456b01c0b4a6f069
- SHA512
  
  dc86c047cd17d27832cdbf2ded7f65fa93047622d9b87ace822fd9d5dc2586aed086f1b67f23708d4336b955df9d87b42eb52dfe4682432d3b8730a98cfca4e5
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOzr9/q9:GhfxHNIreQm+Hi8r9/q9
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence