ffb6be60d7cfdfb530af43286347c71b3d70e96e200fe193dd59307d1cb0f514 | Triage

Sharing

General

Target

ffb6be60d7cfdfb530af43286347c71b3d70e96e200fe193dd59307d1cb0f514
Size

184KB
Sample

240409-espvxahg7z
MD5

eb96c0d359854e9291e7761825928568
SHA1

a4515d7371a29459995e59b5259a510ba6e19523
SHA256

ffb6be60d7cfdfb530af43286347c71b3d70e96e200fe193dd59307d1cb0f514
SHA512

214167aa1e3c033d8d85053570507478a434f438d47955ae2291e6e39c0a3f3b3df7100da30baff4082aa9a9aa2e8bf4435fd271f02d0fb5c0a4b0274c9b46ab
SSDEEP

3072:oEMezyoRKLhJdBn2W1guEfSzlvMq0viuG:oEQoCHBnUuuSzlEq0viu

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  ffb6be60d7cfdfb530af43286347c71b3d70e96e200fe193dd59307d1cb0f514
- Size
  
  184KB
- MD5
  
  eb96c0d359854e9291e7761825928568
- SHA1
  
  a4515d7371a29459995e59b5259a510ba6e19523
- SHA256
  
  ffb6be60d7cfdfb530af43286347c71b3d70e96e200fe193dd59307d1cb0f514
- SHA512
  
  214167aa1e3c033d8d85053570507478a434f438d47955ae2291e6e39c0a3f3b3df7100da30baff4082aa9a9aa2e8bf4435fd271f02d0fb5c0a4b0274c9b46ab
- SSDEEP
  
  3072:oEMezyoRKLhJdBn2W1guEfSzlvMq0viuG:oEQoCHBnUuuSzlEq0viu
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2