c0fc09dddf00103c48e692e9edd294de108208ee148d3fc5c69ea914b8b431ae | Triage

Sharing

General

Target

c0fc09dddf00103c48e692e9edd294de108208ee148d3fc5c69ea914b8b431ae
Size

78KB
Sample

241121-jpx5bszmgw
MD5

78a4acf2fcd4304afaa79d53b55cc072
SHA1

cb04a3062196e67b39e52b7dddf6ad1486d80b8f
SHA256

c0fc09dddf00103c48e692e9edd294de108208ee148d3fc5c69ea914b8b431ae
SHA512

ea745615860ceb2eace168e3b63864661f7def0d5465308fe00d3411d3693343bf9633c5f5d94a121d71d09cd37cb9d381d1600d4387561e3dfa0e67b85f0bc8
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOim79m:GhfxHNIreQm+HizY9m

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  c0fc09dddf00103c48e692e9edd294de108208ee148d3fc5c69ea914b8b431ae
- Size
  
  78KB
- MD5
  
  78a4acf2fcd4304afaa79d53b55cc072
- SHA1
  
  cb04a3062196e67b39e52b7dddf6ad1486d80b8f
- SHA256
  
  c0fc09dddf00103c48e692e9edd294de108208ee148d3fc5c69ea914b8b431ae
- SHA512
  
  ea745615860ceb2eace168e3b63864661f7def0d5465308fe00d3411d3693343bf9633c5f5d94a121d71d09cd37cb9d381d1600d4387561e3dfa0e67b85f0bc8
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOim79m:GhfxHNIreQm+HizY9m
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence