eb70cbb7e4516ccfdcc553e05ef4616647bfc41150cda247c2f78532df5b1544 | Triage

Sharing

General

Target

eb70cbb7e4516ccfdcc553e05ef4616647bfc41150cda247c2f78532df5b1544
Size

128KB
Sample

240602-eqtfbaba95
MD5

2c59d3e7c5859d1f5202b49ac706ee82
SHA1

5d7462e4d9af129f09a44a6af3ab2b8061774e73
SHA256

eb70cbb7e4516ccfdcc553e05ef4616647bfc41150cda247c2f78532df5b1544
SHA512

3f0aac27b8f10cec8140b250ffd497b1bbf6794cb53c30e0d909e8c70cb178b657436ffd55a795e4743dd7111654b77eadf82c36ad97b691b547d717907f3902
SSDEEP

1536:ZhSfQvDioY8Nfz8A5i4JsdBuCRnI4nBknrkhMtLrhEznYiGzBn2rq15bLSwiHr/:oO++YA5tsd1I4kkIrhEznYfzB9BSwW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  eb70cbb7e4516ccfdcc553e05ef4616647bfc41150cda247c2f78532df5b1544
- Size
  
  128KB
- MD5
  
  2c59d3e7c5859d1f5202b49ac706ee82
- SHA1
  
  5d7462e4d9af129f09a44a6af3ab2b8061774e73
- SHA256
  
  eb70cbb7e4516ccfdcc553e05ef4616647bfc41150cda247c2f78532df5b1544
- SHA512
  
  3f0aac27b8f10cec8140b250ffd497b1bbf6794cb53c30e0d909e8c70cb178b657436ffd55a795e4743dd7111654b77eadf82c36ad97b691b547d717907f3902
- SSDEEP
  
  1536:ZhSfQvDioY8Nfz8A5i4JsdBuCRnI4nBknrkhMtLrhEznYiGzBn2rq15bLSwiHr/:oO++YA5tsd1I4kkIrhEznYfzB9BSwW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2