eff5c0fc6fa66700c0aae9c6f457952ff5a5ddc8d184dd3c5ccd86f4cc6f9dcf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eff5c0fc6fa66700c0aae9c6f457952ff5a5ddc8d184dd3c5ccd86f4cc6f9dcf
Size

307KB
Sample

221127-vjvb2agh4x
MD5

8080ab595477d98b701898f7ca034d2f
SHA1

47e3549486cf5684cdf56fe0ad4479ee7faf419e
SHA256

eff5c0fc6fa66700c0aae9c6f457952ff5a5ddc8d184dd3c5ccd86f4cc6f9dcf
SHA512

68d3ef3d955b146d941c4d5c2e86638c3063396222b045e30af6f74ec31767af80150b474241b2c68593fd910c6397fabaab870c661a30dbf2cd8dc4263fdb1e
SSDEEP

6144:jyVOZ+OUalNEjBU18BEUuPSo6I3xhBeOxRoMy:/ZJUINoB5nIhhBeOxZy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  eff5c0fc6fa66700c0aae9c6f457952ff5a5ddc8d184dd3c5ccd86f4cc6f9dcf
- Size
  
  307KB
- MD5
  
  8080ab595477d98b701898f7ca034d2f
- SHA1
  
  47e3549486cf5684cdf56fe0ad4479ee7faf419e
- SHA256
  
  eff5c0fc6fa66700c0aae9c6f457952ff5a5ddc8d184dd3c5ccd86f4cc6f9dcf
- SHA512
  
  68d3ef3d955b146d941c4d5c2e86638c3063396222b045e30af6f74ec31767af80150b474241b2c68593fd910c6397fabaab870c661a30dbf2cd8dc4263fdb1e
- SSDEEP
  
  6144:jyVOZ+OUalNEjBU18BEUuPSo6I3xhBeOxRoMy:/ZJUINoB5nIhhBeOxZy
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2