e3eb8ce9ad0ef4679081ed2d7dea6e1d5c8af2fa521f7bc523a0c024214f5547 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e3eb8ce9ad0ef4679081ed2d7dea6e1d5c8af2fa521f7bc523a0c024214f5547
Size

7.0MB
Sample

230525-wet15sbe94
MD5

aa5f0b1c1fd14b6ef99c5d604c770d13
SHA1

30a9eba953eb45032d22777dca0b3c84121cc0f3
SHA256

e3eb8ce9ad0ef4679081ed2d7dea6e1d5c8af2fa521f7bc523a0c024214f5547
SHA512

1860cb8a4df1959a84b5b768effe5161339b70eacffeb807eddb06bcbb90e98bd8787d3d858693632dc5475b032bcdb2e1878c144f7d6bbebe04b79cdbcb158f
SSDEEP

98304:IHZFvVY4xVF3S5BhXvUqQRNYOtgL+4jDwMMcQ3KjJa2pMg2kI09:l4z8538xa+iwMMcQala4OzW

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e3eb8ce9ad0ef4679081ed2d7dea6e1d5c8af2fa521f7bc523a0c024214f5547
- Size
  
  7.0MB
- MD5
  
  aa5f0b1c1fd14b6ef99c5d604c770d13
- SHA1
  
  30a9eba953eb45032d22777dca0b3c84121cc0f3
- SHA256
  
  e3eb8ce9ad0ef4679081ed2d7dea6e1d5c8af2fa521f7bc523a0c024214f5547
- SHA512
  
  1860cb8a4df1959a84b5b768effe5161339b70eacffeb807eddb06bcbb90e98bd8787d3d858693632dc5475b032bcdb2e1878c144f7d6bbebe04b79cdbcb158f
- SSDEEP
  
  98304:IHZFvVY4xVF3S5BhXvUqQRNYOtgL+4jDwMMcQ3KjJa2pMg2kI09:l4z8538xa+iwMMcQala4OzW
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence