f6a307d243c407c27489de37adac83e9205be531cbb4e2cb71545627faf813fd | Triage

Resubmissions

11-01-2021 13:09

210111-dlhjyngw66 8

11-01-2021 07:36

210111-xfhgmxjy6n 10

Sharing

General

Target

4ced2056e4efe1c93b9f4adaaeaba20c.exe
Size

607KB
Sample

210111-dlhjyngw66
MD5

4ced2056e4efe1c93b9f4adaaeaba20c
SHA1

b975777c42d7d8fb04c34a2efc64dc5e4c574712
SHA256

f6a307d243c407c27489de37adac83e9205be531cbb4e2cb71545627faf813fd
SHA512

014df0ad54bf23335f964fa4e313a91b60b3ea2c62b73a306e973177830b573666aaebc1932cafa766042f34b8e32adcfabe3027aae2cc09341fd138a8963eaf

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  4ced2056e4efe1c93b9f4adaaeaba20c.exe
- Size
  
  607KB
- MD5
  
  4ced2056e4efe1c93b9f4adaaeaba20c
- SHA1
  
  b975777c42d7d8fb04c34a2efc64dc5e4c574712
- SHA256
  
  f6a307d243c407c27489de37adac83e9205be531cbb4e2cb71545627faf813fd
- SHA512
  
  014df0ad54bf23335f964fa4e313a91b60b3ea2c62b73a306e973177830b573666aaebc1932cafa766042f34b8e32adcfabe3027aae2cc09341fd138a8963eaf
Score

8^/10

evasion
- Disables Task Manager via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1