ec2fe520a982e1f3e6542a16f47d8cb39068a17c4bb3904236f68148eab89297 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec2fe520a982e1f3e6542a16f47d8cb39068a17c4bb3904236f68148eab89297
Size

77KB
Sample

240606-3khnmadg2y
MD5

e978a509cf26da8ca2abdd265bd7a425
SHA1

eed2731bfe81413758825f9f77fc7c7d7830dc76
SHA256

ec2fe520a982e1f3e6542a16f47d8cb39068a17c4bb3904236f68148eab89297
SHA512

06d33c3ebefd3e8590dd03b0165d75f1627be9d94875c3c92edf00c8f9bcd05228c992cb734fb11ac241db8dec7a0697daabab4e4b0d0115da0706bbedcf229d
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO8bBQw:GhfxHNIreQm+Hi9bBQw

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  ec2fe520a982e1f3e6542a16f47d8cb39068a17c4bb3904236f68148eab89297
- Size
  
  77KB
- MD5
  
  e978a509cf26da8ca2abdd265bd7a425
- SHA1
  
  eed2731bfe81413758825f9f77fc7c7d7830dc76
- SHA256
  
  ec2fe520a982e1f3e6542a16f47d8cb39068a17c4bb3904236f68148eab89297
- SHA512
  
  06d33c3ebefd3e8590dd03b0165d75f1627be9d94875c3c92edf00c8f9bcd05228c992cb734fb11ac241db8dec7a0697daabab4e4b0d0115da0706bbedcf229d
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO8bBQw:GhfxHNIreQm+Hi9bBQw
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2