ec0b2bbc42613bc06b259930707759c88f06dda0a16fb8484f5318e59ded814b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec0b2bbc42613bc06b259930707759c88f06dda0a16fb8484f5318e59ded814b
Size

73KB
Sample

240908-qx34wa1elc
MD5

d5b86e26e6ef49cf8c9a65676ca76459
SHA1

e9ac0d9e043b412b6103522cc044bcaf9c931fd6
SHA256

ec0b2bbc42613bc06b259930707759c88f06dda0a16fb8484f5318e59ded814b
SHA512

8ecf82bd9a157dadc4712d91708c93696fd6bcc744d130cf884d62e1d5c92fe2364b3717ebf31d7005c4738163af5d9eefa10f16f997cbd57d601209c57db2a1
SSDEEP

768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWO:RshfSWHHNvoLqNwDDGw02eQmh0HjWO

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ec0b2bbc42613bc06b259930707759c88f06dda0a16fb8484f5318e59ded814b
- Size
  
  73KB
- MD5
  
  d5b86e26e6ef49cf8c9a65676ca76459
- SHA1
  
  e9ac0d9e043b412b6103522cc044bcaf9c931fd6
- SHA256
  
  ec0b2bbc42613bc06b259930707759c88f06dda0a16fb8484f5318e59ded814b
- SHA512
  
  8ecf82bd9a157dadc4712d91708c93696fd6bcc744d130cf884d62e1d5c92fe2364b3717ebf31d7005c4738163af5d9eefa10f16f997cbd57d601209c57db2a1
- SSDEEP
  
  768:agO5xRYi+SfSWHHNvvG5bnl/NqNwsKVDstHxYD0p1aXKynF0vQmYZS0HdJnfWO:RshfSWHHNvoLqNwDDGw02eQmh0HjWO
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence