ee2fa72e08685370dd0803ed74c9cecd92810069c8ddda8e77cb34aedbdd8d47 | Triage

Sharing

General

Target

ee2fa72e08685370dd0803ed74c9cecd92810069c8ddda8e77cb34aedbdd8d47
Size

417KB
Sample

221123-s1ftvsfg7s
MD5

b4199cd4eaec08d748523d44de37bc00
SHA1

67803c452fa3efb8c007dcd51824eaef8b84aba9
SHA256

ee2fa72e08685370dd0803ed74c9cecd92810069c8ddda8e77cb34aedbdd8d47
SHA512

4f0ba3b5e8aa3ba5133ac713500ff929ac723b95a6538283022da00072f9235f31705062681fda846d6d40d0d7a56ee7af1342ed6f2499dffcdddd9b79a42440
SSDEEP

6144:MRAhhJxX7bNIFlJYe5hhbc9FTPweCZjIxUNo5yLqUOHYyi4DrizFNeRXap:UsA1pbaCZzNUTUDyi4DrUeRS

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ee2fa72e08685370dd0803ed74c9cecd92810069c8ddda8e77cb34aedbdd8d47
- Size
  
  417KB
- MD5
  
  b4199cd4eaec08d748523d44de37bc00
- SHA1
  
  67803c452fa3efb8c007dcd51824eaef8b84aba9
- SHA256
  
  ee2fa72e08685370dd0803ed74c9cecd92810069c8ddda8e77cb34aedbdd8d47
- SHA512
  
  4f0ba3b5e8aa3ba5133ac713500ff929ac723b95a6538283022da00072f9235f31705062681fda846d6d40d0d7a56ee7af1342ed6f2499dffcdddd9b79a42440
- SSDEEP
  
  6144:MRAhhJxX7bNIFlJYe5hhbc9FTPweCZjIxUNo5yLqUOHYyi4DrizFNeRXap:UsA1pbaCZzNUTUDyi4DrUeRS
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2