ebf4eebdeb63fec342fd93e3b85163dfd6f427233545cda3a531349e84b1134a | Triage

Sharing

General

Target

ebf4eebdeb63fec342fd93e3b85163dfd6f427233545cda3a531349e84b1134a
Size

56KB
Sample

221107-fdel3ahbc8
MD5

0ee89f4fc8aab8af3f81b0ea317f8cf5
SHA1

621401df4ec6d7cd6af93482ad7fceabd5e00b6e
SHA256

ebf4eebdeb63fec342fd93e3b85163dfd6f427233545cda3a531349e84b1134a
SHA512

75bdc28d60ce76efbde4b4a8c86a76e2c556a4ed922f331b60998559b633b50554d9903e0dad42d434fa92ca2fe5016b6440d8da8dcb208989cfbd6dad68bca6
SSDEEP

1536:rZPQC0hADWaLjlKHUiy41O2TKQWq/RskY9nRJ+Rg0x+eSJ:FPQDQWkjEHKx2BJskY9j+Rg0TS

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  ebf4eebdeb63fec342fd93e3b85163dfd6f427233545cda3a531349e84b1134a
- Size
  
  56KB
- MD5
  
  0ee89f4fc8aab8af3f81b0ea317f8cf5
- SHA1
  
  621401df4ec6d7cd6af93482ad7fceabd5e00b6e
- SHA256
  
  ebf4eebdeb63fec342fd93e3b85163dfd6f427233545cda3a531349e84b1134a
- SHA512
  
  75bdc28d60ce76efbde4b4a8c86a76e2c556a4ed922f331b60998559b633b50554d9903e0dad42d434fa92ca2fe5016b6440d8da8dcb208989cfbd6dad68bca6
- SSDEEP
  
  1536:rZPQC0hADWaLjlKHUiy41O2TKQWq/RskY9nRJ+Rg0x+eSJ:FPQDQWkjEHKx2BJskY9j+Rg0TS
Score

8^/10

persistence
- Drops file in Drivers directory
- Sets service image path in registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2