5de07968a00f7e100e7aee7b1b074e683796fd00f4045ed8d9ae8a52bb7fb9f0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5de07968a00f7e100e7aee7b1b074e683796fd00f4045ed8d9ae8a52bb7fb9f0
Size

380KB
Sample

221003-1p3hgshafp
MD5

3a9de56ed60853cab3513769a97152f0
SHA1

4eee8e477a80d60214196619baeeec31e0c7f08b
SHA256

5de07968a00f7e100e7aee7b1b074e683796fd00f4045ed8d9ae8a52bb7fb9f0
SHA512

0ad979bdebbe4c93b79e9bee2fa3b2e6b5fac7dcad0eead50336c52a00e8f3a8b9658f2158c48c58af11774fc9cb8054dc560927883bf56544f02e6d8ae65743
SSDEEP

6144:MTcFZVYD3a/guRyxxgKK/qF3AAiezqDBGv6Nlr:DVYTa/gxxgK3QLDB5B

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  5de07968a00f7e100e7aee7b1b074e683796fd00f4045ed8d9ae8a52bb7fb9f0
- Size
  
  380KB
- MD5
  
  3a9de56ed60853cab3513769a97152f0
- SHA1
  
  4eee8e477a80d60214196619baeeec31e0c7f08b
- SHA256
  
  5de07968a00f7e100e7aee7b1b074e683796fd00f4045ed8d9ae8a52bb7fb9f0
- SHA512
  
  0ad979bdebbe4c93b79e9bee2fa3b2e6b5fac7dcad0eead50336c52a00e8f3a8b9658f2158c48c58af11774fc9cb8054dc560927883bf56544f02e6d8ae65743
- SSDEEP
  
  6144:MTcFZVYD3a/guRyxxgKK/qF3AAiezqDBGv6Nlr:DVYTa/gxxgK3QLDB5B
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2