e6b0d5b2918cdf866869a07a2ba2cdff6248c66fb75fe76b735920f1ab212e26 | Triage

Sharing

General

Target

e6b0d5b2918cdf866869a07a2ba2cdff6248c66fb75fe76b735920f1ab212e26
Size

164KB
Sample

221011-g73resadaj
MD5

79df60b1842db452583440e91f8fadd0
SHA1

9adc7056bf6e67b947cfd9dc647940cbea18a413
SHA256

e6b0d5b2918cdf866869a07a2ba2cdff6248c66fb75fe76b735920f1ab212e26
SHA512

e414449370357cd6e65bdd7d6576f81cf002d02fef17278ef2eb65ae45ada8c98cf96b3d0f2e1438281f88ef264877a1a42eda35ac9569ebf0be6643e4afa273
SSDEEP

3072:phj0Hzpm9Tcek9R7dE62yiV5AO/aWeVomBhGYt7R:30TpeceRF7aI+rR

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  e6b0d5b2918cdf866869a07a2ba2cdff6248c66fb75fe76b735920f1ab212e26
- Size
  
  164KB
- MD5
  
  79df60b1842db452583440e91f8fadd0
- SHA1
  
  9adc7056bf6e67b947cfd9dc647940cbea18a413
- SHA256
  
  e6b0d5b2918cdf866869a07a2ba2cdff6248c66fb75fe76b735920f1ab212e26
- SHA512
  
  e414449370357cd6e65bdd7d6576f81cf002d02fef17278ef2eb65ae45ada8c98cf96b3d0f2e1438281f88ef264877a1a42eda35ac9569ebf0be6643e4afa273
- SSDEEP
  
  3072:phj0Hzpm9Tcek9R7dE62yiV5AO/aWeVomBhGYt7R:30TpeceRF7aI+rR
Score

8^/10

persistence
- Executes dropped EXE
- Modifies AppInit DLL entries
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2