17c6bf2efbaac088398fc01dabdcaf375973b366e1a899d7f9275e4774119f22 | Triage

Sharing

General

Target

3bce08ccdc411b1f275601c0edf9c084
Size

96KB
Sample

240101-ebblysbabq
MD5

3bce08ccdc411b1f275601c0edf9c084
SHA1

60a791c3060f32ca93acb07667719c7ae69a7afd
SHA256

17c6bf2efbaac088398fc01dabdcaf375973b366e1a899d7f9275e4774119f22
SHA512

83e35b734edec5d4b362c3e04d2da656a554efcdd24a4468a8d7eaa421c58b4a37510849b605b2b01893d35c69e78e58702c1c3fe55b4d2495a51e625355b530
SSDEEP

1536:8SQBHHf6cO/hgZrbkGulSc16l6u+NMMl/KlYv1Tq5ThF/NIjnZfS:c0hArElu8CFF/Cn1S

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  3bce08ccdc411b1f275601c0edf9c084
- Size
  
  96KB
- MD5
  
  3bce08ccdc411b1f275601c0edf9c084
- SHA1
  
  60a791c3060f32ca93acb07667719c7ae69a7afd
- SHA256
  
  17c6bf2efbaac088398fc01dabdcaf375973b366e1a899d7f9275e4774119f22
- SHA512
  
  83e35b734edec5d4b362c3e04d2da656a554efcdd24a4468a8d7eaa421c58b4a37510849b605b2b01893d35c69e78e58702c1c3fe55b4d2495a51e625355b530
- SSDEEP
  
  1536:8SQBHHf6cO/hgZrbkGulSc16l6u+NMMl/KlYv1Tq5ThF/NIjnZfS:c0hArElu8CFF/Cn1S
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2