Overview

overview

8

Static

static

1

eb484dc10c...08.exe

windows7-x64

8

eb484dc10c...08.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eb484dc10ce14575e71388e27ecde34db82d5701fe364acfb3ab3f5daac62708

  • Size

    113KB

  • Sample

    221127-t3916aca49

  • MD5

    a298dd36332941c8308614816bb0aeb4

  • SHA1

    e9a78fdf42f13b82bdc81e214940054440e6b540

  • SHA256

    eb484dc10ce14575e71388e27ecde34db82d5701fe364acfb3ab3f5daac62708

  • SHA512

    4a71bbc35c6e83e08c69189529ce566a24fb96d7aa2022c88c0b65747f5fbadde2a40b24a043fcfee1f5d3492efd1d2861087a2edc13da989de0137a433f63ec

  • SSDEEP

    3072:34eYZ4+1JXJJX31sIOZFe4Cp+JIpNVd/C290bu:I5O87SIkFe4qpNVc5q

Score
8/10
persistence

Malware Config

Targets

    • Target

      eb484dc10ce14575e71388e27ecde34db82d5701fe364acfb3ab3f5daac62708

    • Size

      113KB

    • MD5

      a298dd36332941c8308614816bb0aeb4

    • SHA1

      e9a78fdf42f13b82bdc81e214940054440e6b540

    • SHA256

      eb484dc10ce14575e71388e27ecde34db82d5701fe364acfb3ab3f5daac62708

    • SHA512

      4a71bbc35c6e83e08c69189529ce566a24fb96d7aa2022c88c0b65747f5fbadde2a40b24a043fcfee1f5d3492efd1d2861087a2edc13da989de0137a433f63ec

    • SSDEEP

      3072:34eYZ4+1JXJJX31sIOZFe4Cp+JIpNVd/C290bu:I5O87SIkFe4qpNVc5q

    Score
    8/10
    persistence

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Registers COM server for autorun

      persistence

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks