Overview

overview

8

Static

static

3

e8967ebe79...40.exe

windows7-x64

8

e8967ebe79...40.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e8967ebe7977d6a2982abb9cf44d69efcb4047b46b1f24443dadc4497935e940

  • Size

    89KB

  • Sample

    240701-enhk2ayglq

  • MD5

    b1d291fe56b0578d9f7000687930160d

  • SHA1

    e452c1d4ef3647e1d93a38f9f46822ae93e24eea

  • SHA256

    e8967ebe7977d6a2982abb9cf44d69efcb4047b46b1f24443dadc4497935e940

  • SHA512

    2e32eb34aa661298f448ac4da81df688b95b4bc20c93557d11395ed0cbc865d418ca43875e0bced02bfcda38f001b02882ca899d83c924bb64906a97fc4f4d50

  • SSDEEP

    768:5vw9816thKQLroa4/wQkNrfrunMxVFA3k:lEG/0oalbunMxVS3k

Score
8/10
persistence

Malware Config

Targets

    • Target

      e8967ebe7977d6a2982abb9cf44d69efcb4047b46b1f24443dadc4497935e940

    • Size

      89KB

    • MD5

      b1d291fe56b0578d9f7000687930160d

    • SHA1

      e452c1d4ef3647e1d93a38f9f46822ae93e24eea

    • SHA256

      e8967ebe7977d6a2982abb9cf44d69efcb4047b46b1f24443dadc4497935e940

    • SHA512

      2e32eb34aa661298f448ac4da81df688b95b4bc20c93557d11395ed0cbc865d418ca43875e0bced02bfcda38f001b02882ca899d83c924bb64906a97fc4f4d50

    • SSDEEP

      768:5vw9816thKQLroa4/wQkNrfrunMxVFA3k:lEG/0oalbunMxVS3k

    Score
    8/10
    persistence

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Deletes itself

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Active Setup

1
T1547.014

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Active Setup

1
T1547.014

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks