6ee19d5c8999b4bce1bcec076ee02414d6be1ecd740ff972a29e6a93320284b6 | Triage

Sharing

General

Target

6ee19d5c8999b4bce1bcec076ee02414d6be1ecd740ff972a29e6a93320284b6.exe
Size

85KB
Sample

241119-nnh18svpbw
MD5

7a49a00432765fd6a2a1bbc6e53aee99
SHA1

d7c3364704ab660bc1f17b3f11e38d7ee1ad2e89
SHA256

6ee19d5c8999b4bce1bcec076ee02414d6be1ecd740ff972a29e6a93320284b6
SHA512

4c6cbd99456e610152845803e25f62ccb41837efb756ab78633b2fe870dbd9e85e309bfdc752c355cdb5d731cd947a27f610cdf2bb839e81e0effb5f4e5e1f8a
SSDEEP

768:JgO5xRYi+SQvvG5bnl/NqNwsKVDsBYD77aXKynF0vd:eshQvoLqNwDDhCed

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  6ee19d5c8999b4bce1bcec076ee02414d6be1ecd740ff972a29e6a93320284b6.exe
- Size
  
  85KB
- MD5
  
  7a49a00432765fd6a2a1bbc6e53aee99
- SHA1
  
  d7c3364704ab660bc1f17b3f11e38d7ee1ad2e89
- SHA256
  
  6ee19d5c8999b4bce1bcec076ee02414d6be1ecd740ff972a29e6a93320284b6
- SHA512
  
  4c6cbd99456e610152845803e25f62ccb41837efb756ab78633b2fe870dbd9e85e309bfdc752c355cdb5d731cd947a27f610cdf2bb839e81e0effb5f4e5e1f8a
- SSDEEP
  
  768:JgO5xRYi+SQvvG5bnl/NqNwsKVDsBYD77aXKynF0vd:eshQvoLqNwDDhCed
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence