eccbbd0540ee81e4cc7cc4dffe3bb11424349b07a19cb07420113a01dd496fd1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eccbbd0540ee81e4cc7cc4dffe3bb11424349b07a19cb07420113a01dd496fd1
Size

32KB
Sample

221206-nbbfmacc78
MD5

80ff487bae9dc32ddf424f6edf89496b
SHA1

145a04c3e9bfd8aed09e206af02832f0957d78b1
SHA256

eccbbd0540ee81e4cc7cc4dffe3bb11424349b07a19cb07420113a01dd496fd1
SHA512

4428a3d1e0f706d638ec939df13546d6f8489aefa1c8f01456174fb36a1face951e35f34a3db4ac1db956857e1fec44acae85cb2c5aa6eeb228535851c0431a4
SSDEEP

384:kJLt6l98H2g7QJJ5g3U2ny5HSeo0eGQD94ub:7C2jJJ5iny54/yu

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  eccbbd0540ee81e4cc7cc4dffe3bb11424349b07a19cb07420113a01dd496fd1
- Size
  
  32KB
- MD5
  
  80ff487bae9dc32ddf424f6edf89496b
- SHA1
  
  145a04c3e9bfd8aed09e206af02832f0957d78b1
- SHA256
  
  eccbbd0540ee81e4cc7cc4dffe3bb11424349b07a19cb07420113a01dd496fd1
- SHA512
  
  4428a3d1e0f706d638ec939df13546d6f8489aefa1c8f01456174fb36a1face951e35f34a3db4ac1db956857e1fec44acae85cb2c5aa6eeb228535851c0431a4
- SSDEEP
  
  384:kJLt6l98H2g7QJJ5g3U2ny5HSeo0eGQD94ub:7C2jJJ5iny54/yu
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2