e4eb6cc8438acfe027d8ef5b42d1bfd1d48d9995fafccda97c1a9d5cb9a9f907 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e4eb6cc8438acfe027d8ef5b42d1bfd1d48d9995fafccda97c1a9d5cb9a9f907
Size

74KB
Sample

231012-g9q6eacb3t
MD5

ca8908d882b1798fcbbee6be102dee29
SHA1

6387e9a4ad810e1f0dd62eb40fb43d1e493cafe2
SHA256

e4eb6cc8438acfe027d8ef5b42d1bfd1d48d9995fafccda97c1a9d5cb9a9f907
SHA512

f3e2489af187d3040daf51052d570e99eafa76bf47e57bf89d07b620172fcde516bb643d8fa481bfcad72d22def9cfbe552ed98cf87a90e727b37f90a4b58979
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOaU:RshfSWHHNvoLqNwDDGw02eQmh0HjWOaU

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  e4eb6cc8438acfe027d8ef5b42d1bfd1d48d9995fafccda97c1a9d5cb9a9f907
- Size
  
  74KB
- MD5
  
  ca8908d882b1798fcbbee6be102dee29
- SHA1
  
  6387e9a4ad810e1f0dd62eb40fb43d1e493cafe2
- SHA256
  
  e4eb6cc8438acfe027d8ef5b42d1bfd1d48d9995fafccda97c1a9d5cb9a9f907
- SHA512
  
  f3e2489af187d3040daf51052d570e99eafa76bf47e57bf89d07b620172fcde516bb643d8fa481bfcad72d22def9cfbe552ed98cf87a90e727b37f90a4b58979
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWOaU:RshfSWHHNvoLqNwDDGw02eQmh0HjWOaU
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2