General

  • Target

    tmp/2587ea00-8b51-4ab2-82a4-1f5bda74ea65_Ego2.exe

  • Size

    172KB

  • Sample

    211227-fm17esagdj

  • MD5

    d5438415ed71322922b70ac85ad02f64

  • SHA1

    832cfa96f5ff034db65707f6781752441beaf0aa

  • SHA256

    3d7e2744ac50ae3ff7fcdbf97b4f70af8236ade6c3d2e82004f0641be304f83b

  • SHA512

    7f12be61ddb39cd357f817cf1c47110128ae2d962e9c1fcb947f8f7ed6084db5a3607f3edda06680e3d078c50a754859511cb69c0adac01360b51cee54925b6c

Malware Config

Targets

    • Target

      tmp/2587ea00-8b51-4ab2-82a4-1f5bda74ea65_Ego2.exe

    • Size

      172KB

    • MD5

      d5438415ed71322922b70ac85ad02f64

    • SHA1

      832cfa96f5ff034db65707f6781752441beaf0aa

    • SHA256

      3d7e2744ac50ae3ff7fcdbf97b4f70af8236ade6c3d2e82004f0641be304f83b

    • SHA512

      7f12be61ddb39cd357f817cf1c47110128ae2d962e9c1fcb947f8f7ed6084db5a3607f3edda06680e3d078c50a754859511cb69c0adac01360b51cee54925b6c

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

2
T1060

Privilege Escalation

Bypass User Account Control

1
T1088

Defense Evasion

Bypass User Account Control

1
T1088

Disabling Security Tools

3
T1089

Modify Registry

6
T1112

Discovery

System Information Discovery

1
T1082

Collection

Email Collection

1
T1114

Tasks