eb81657a4a56e74e64881fe2cc31f9a99c7e40f0a56f1dd216c3ad5a63551869 | Triage

Sharing

General

Target

eb81657a4a56e74e64881fe2cc31f9a99c7e40f0a56f1dd216c3ad5a63551869
Size

90KB
Sample

240901-fbjg8s1hlj
MD5

572abf11894fbecf7d1f0887749e65c2
SHA1

b9ff79283f22ed554aeee3312c07732d6b93e40c
SHA256

eb81657a4a56e74e64881fe2cc31f9a99c7e40f0a56f1dd216c3ad5a63551869
SHA512

944dacb84d06d5081f79bc4238ed4343fb208a51e157d560e879fcc497c4fd560c9e07d5656460a70040bea16e4701d86c5bd7bca31b98cb9cc37b22110c4544
SSDEEP

1536:d236D51rNmXWnuSwXz0ZMKPT11jmATwgHX6fOOQ/4BrGTI5Yxj:d3D/oGuSt/aATB2U/4kT0Yxj

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  eb81657a4a56e74e64881fe2cc31f9a99c7e40f0a56f1dd216c3ad5a63551869
- Size
  
  90KB
- MD5
  
  572abf11894fbecf7d1f0887749e65c2
- SHA1
  
  b9ff79283f22ed554aeee3312c07732d6b93e40c
- SHA256
  
  eb81657a4a56e74e64881fe2cc31f9a99c7e40f0a56f1dd216c3ad5a63551869
- SHA512
  
  944dacb84d06d5081f79bc4238ed4343fb208a51e157d560e879fcc497c4fd560c9e07d5656460a70040bea16e4701d86c5bd7bca31b98cb9cc37b22110c4544
- SSDEEP
  
  1536:d236D51rNmXWnuSwXz0ZMKPT11jmATwgHX6fOOQ/4BrGTI5Yxj:d3D/oGuSt/aATB2U/4kT0Yxj
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence