192a127a41b55d365cb3972818edfacfbb59024048610e22c4f5df187ddac3de | Triage

Sharing

Copy URL Twitter E-mail

General

Target

192a127a41b55d365cb3972818edfacfbb59024048610e22c4f5df187ddac3deN
Size

88KB
Sample

241003-zjgs6ayhrh
MD5

5fef1eb99a79a952605ce421181491b0
SHA1

923792fe908e8b8777193bc8921eff185417e66e
SHA256

192a127a41b55d365cb3972818edfacfbb59024048610e22c4f5df187ddac3de
SHA512

6ba00b00893ace60c8ee2515b6d5053963072fb4bfd785c6a64d1b6cf78182618bd72ccec95dcdd859aa243a4aee8478212246ffc9f9240ba8b1b8883be7b7e0
SSDEEP

1536:8h7xsCKosi5pzjIcdRiTpqMGxs3lh7xsCKosi5pzjIcdRiTpqMGxs31b:8EhWbcpqIlEhWbcpqIN

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  192a127a41b55d365cb3972818edfacfbb59024048610e22c4f5df187ddac3deN
- Size
  
  88KB
- MD5
  
  5fef1eb99a79a952605ce421181491b0
- SHA1
  
  923792fe908e8b8777193bc8921eff185417e66e
- SHA256
  
  192a127a41b55d365cb3972818edfacfbb59024048610e22c4f5df187ddac3de
- SHA512
  
  6ba00b00893ace60c8ee2515b6d5053963072fb4bfd785c6a64d1b6cf78182618bd72ccec95dcdd859aa243a4aee8478212246ffc9f9240ba8b1b8883be7b7e0
- SSDEEP
  
  1536:8h7xsCKosi5pzjIcdRiTpqMGxs3lh7xsCKosi5pzjIcdRiTpqMGxs31b:8EhWbcpqIlEhWbcpqIN
Score

8^/10

discovery persistence
- Event Triggered Execution: Image File Execution Options Injection
  persistence
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Image File Execution Options Injection

Privilege Escalation

Event Triggered Execution

Change Default File Association

Image File Execution Options Injection

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence