ecffe5adbed91a756a0b22f4985ebcbe5b6f6c0c184d257d0b9420eb43a8bcc7 | Triage

Sharing

General

Target

ecffe5adbed91a756a0b22f4985ebcbe5b6f6c0c184d257d0b9420eb43a8bcc7
Size

45KB
Sample

240807-e6rlnavcje
MD5

64f984d07cc5412b0f47c290f6afdbf1
SHA1

269ea51b78bb9b308f853a7054c9017f9a9430de
SHA256

ecffe5adbed91a756a0b22f4985ebcbe5b6f6c0c184d257d0b9420eb43a8bcc7
SHA512

f76e96d409aa3e2f7e88864a0647d60b7c2d768d8f100e86807d3a835fc9dd1c9f9ddfda0209a48b1276b6c508489adce42f22582f3f86093474bdd3d1718797
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhX:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wY3

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ecffe5adbed91a756a0b22f4985ebcbe5b6f6c0c184d257d0b9420eb43a8bcc7
- Size
  
  45KB
- MD5
  
  64f984d07cc5412b0f47c290f6afdbf1
- SHA1
  
  269ea51b78bb9b308f853a7054c9017f9a9430de
- SHA256
  
  ecffe5adbed91a756a0b22f4985ebcbe5b6f6c0c184d257d0b9420eb43a8bcc7
- SHA512
  
  f76e96d409aa3e2f7e88864a0647d60b7c2d768d8f100e86807d3a835fc9dd1c9f9ddfda0209a48b1276b6c508489adce42f22582f3f86093474bdd3d1718797
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhX:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wY3
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence