ebbec73d87d9e602da59a73d5c5055d413787ace3e92b1b3367b28f27a296b10 | Triage

Sharing

General

Target

ebbec73d87d9e602da59a73d5c5055d413787ace3e92b1b3367b28f27a296b10
Size

520KB
Sample

240726-fxqtfa1gle
MD5

e9c1a8b49fef2d85c1cc18a883947f38
SHA1

7f29d6e710d8673ff430ca83f12144f821bb62b2
SHA256

ebbec73d87d9e602da59a73d5c5055d413787ace3e92b1b3367b28f27a296b10
SHA512

1f0cf70aea3fb5547f74150b748e2ff6658ecc1a83c60cbbdff5b6059318eb4484ce5cdebc087ecece4f9178bdb4e72f2db4cdaf5b3fa84a69c53f7d7bc08dc5
SSDEEP

6144:I79vXW6/2SNeFM6234lKm3mo8Yvi4KsLTFM6234lKm3r8SeNpgdyuH1lZfRo0V8I:6PWPRFB24lwR45FB24lJ87g7/VycgEH

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ebbec73d87d9e602da59a73d5c5055d413787ace3e92b1b3367b28f27a296b10
- Size
  
  520KB
- MD5
  
  e9c1a8b49fef2d85c1cc18a883947f38
- SHA1
  
  7f29d6e710d8673ff430ca83f12144f821bb62b2
- SHA256
  
  ebbec73d87d9e602da59a73d5c5055d413787ace3e92b1b3367b28f27a296b10
- SHA512
  
  1f0cf70aea3fb5547f74150b748e2ff6658ecc1a83c60cbbdff5b6059318eb4484ce5cdebc087ecece4f9178bdb4e72f2db4cdaf5b3fa84a69c53f7d7bc08dc5
- SSDEEP
  
  6144:I79vXW6/2SNeFM6234lKm3mo8Yvi4KsLTFM6234lKm3r8SeNpgdyuH1lZfRo0V8I:6PWPRFB24lwR45FB24lJ87g7/VycgEH
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence