de2ee580995fbebac2b0ae6302a4c6032ad4562f8627aaef44c9a98ed7adfab3 | Triage

Sharing

General

Target

de2ee580995fbebac2b0ae6302a4c6032ad4562f8627aaef44c9a98ed7adfab3N
Size

1016KB
Sample

241009-engnqsydmf
MD5

16c6ea0d18ddd171e677e926cbc25580
SHA1

05237ef237e46e958c4c806e4d0f5b8a6f34b12f
SHA256

de2ee580995fbebac2b0ae6302a4c6032ad4562f8627aaef44c9a98ed7adfab3
SHA512

3ce182b6326eb65d8171c409adf57d91f1e3ea44193393264507691451ec9359346c3241dcaafa0a85012071d2a4fcbd3b2a38902e9ad64cca1e96bcfa820b9a
SSDEEP

768:5BBdFYDgao5/AUrLEEzayTpBJfxBDlxcFNXK8D1Foj/:5pcC/eAayJ3Rx0g

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  de2ee580995fbebac2b0ae6302a4c6032ad4562f8627aaef44c9a98ed7adfab3N
- Size
  
  1016KB
- MD5
  
  16c6ea0d18ddd171e677e926cbc25580
- SHA1
  
  05237ef237e46e958c4c806e4d0f5b8a6f34b12f
- SHA256
  
  de2ee580995fbebac2b0ae6302a4c6032ad4562f8627aaef44c9a98ed7adfab3
- SHA512
  
  3ce182b6326eb65d8171c409adf57d91f1e3ea44193393264507691451ec9359346c3241dcaafa0a85012071d2a4fcbd3b2a38902e9ad64cca1e96bcfa820b9a
- SSDEEP
  
  768:5BBdFYDgao5/AUrLEEzayTpBJfxBDlxcFNXK8D1Foj/:5pcC/eAayJ3Rx0g
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence