ebf02636dda463a1adc403a6445dc5f769885d4e1cc4121fed3b45cc8fd4f525 | Triage

Sharing

General

Target

ebf02636dda463a1adc403a6445dc5f769885d4e1cc4121fed3b45cc8fd4f525
Size

64KB
Sample

240522-lrb1zsah88
MD5

1b9eaab7e2dac2e1a9b52e9e0863e31e
SHA1

4f44871554876eeb4cda5ad8adcf59bfa09b2662
SHA256

ebf02636dda463a1adc403a6445dc5f769885d4e1cc4121fed3b45cc8fd4f525
SHA512

6dee2380caf1c026446d0eee051fd40478f664899e7b46ccb89535e8454e30052d6c31544b30a2d2c556f7f1dc41e285a64fb89eca23f5605061addf3b93fdee
SSDEEP

768:pqRjLYEO8GfcW3orFu9bFI/jEUMY8tx/daIPhwB0yuJxf96A35K0HqMqf/1H58X4:UPHJ/AY1gXfhE0Kvlsly5VP

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ebf02636dda463a1adc403a6445dc5f769885d4e1cc4121fed3b45cc8fd4f525
- Size
  
  64KB
- MD5
  
  1b9eaab7e2dac2e1a9b52e9e0863e31e
- SHA1
  
  4f44871554876eeb4cda5ad8adcf59bfa09b2662
- SHA256
  
  ebf02636dda463a1adc403a6445dc5f769885d4e1cc4121fed3b45cc8fd4f525
- SHA512
  
  6dee2380caf1c026446d0eee051fd40478f664899e7b46ccb89535e8454e30052d6c31544b30a2d2c556f7f1dc41e285a64fb89eca23f5605061addf3b93fdee
- SSDEEP
  
  768:pqRjLYEO8GfcW3orFu9bFI/jEUMY8tx/daIPhwB0yuJxf96A35K0HqMqf/1H58X4:UPHJ/AY1gXfhE0Kvlsly5VP
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2