eb6a8124d50afc21f64437a3769a61f843a5fb8beb6375115b73da999222b4a4 | Triage

Sharing

General

Target

eb6a8124d50afc21f64437a3769a61f843a5fb8beb6375115b73da999222b4a4
Size

79KB
Sample

240603-kdswxahb21
MD5

0bce44a1f635f6ead24d377602202e7f
SHA1

4c0381cce3726ce6bdd7f39fc5bd2e21369c964a
SHA256

eb6a8124d50afc21f64437a3769a61f843a5fb8beb6375115b73da999222b4a4
SHA512

58ad54067a48b6e7a8187cf4bfec7142ff33c1f010386bdeec3279ec630048be32ee25c130c6abc213805143dc84081fd834006d9c93ea081d3e938ff79268e9
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOx5KVFhLh1oRci:GhfxHNIreQm+HidvjDi

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  eb6a8124d50afc21f64437a3769a61f843a5fb8beb6375115b73da999222b4a4
- Size
  
  79KB
- MD5
  
  0bce44a1f635f6ead24d377602202e7f
- SHA1
  
  4c0381cce3726ce6bdd7f39fc5bd2e21369c964a
- SHA256
  
  eb6a8124d50afc21f64437a3769a61f843a5fb8beb6375115b73da999222b4a4
- SHA512
  
  58ad54067a48b6e7a8187cf4bfec7142ff33c1f010386bdeec3279ec630048be32ee25c130c6abc213805143dc84081fd834006d9c93ea081d3e938ff79268e9
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOx5KVFhLh1oRci:GhfxHNIreQm+HidvjDi
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2