dfdef999e27dfdb174100eecc990994f6e5899c9e42d731d41babafbc3a43fd4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dfdef999e27dfdb174100eecc990994f6e5899c9e42d731d41babafbc3a43fd4
Size

72KB
Sample

221028-1a4f8sfhg6
MD5

0d893954e3e409b9c3afedb88f94d686
SHA1

29e5db066c92aedca697bf52e7595fc3c023ed48
SHA256

dfdef999e27dfdb174100eecc990994f6e5899c9e42d731d41babafbc3a43fd4
SHA512

f7d6788f9b84e21b20281097e0e6ef264a17f5eca64ce08312eee13572c3b62df33d9f0e2b998b89971422acc71860da84727c9f603dfbb3c9f6bcf99334b423
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2/:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrT

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  dfdef999e27dfdb174100eecc990994f6e5899c9e42d731d41babafbc3a43fd4
- Size
  
  72KB
- MD5
  
  0d893954e3e409b9c3afedb88f94d686
- SHA1
  
  29e5db066c92aedca697bf52e7595fc3c023ed48
- SHA256
  
  dfdef999e27dfdb174100eecc990994f6e5899c9e42d731d41babafbc3a43fd4
- SHA512
  
  f7d6788f9b84e21b20281097e0e6ef264a17f5eca64ce08312eee13572c3b62df33d9f0e2b998b89971422acc71860da84727c9f603dfbb3c9f6bcf99334b423
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2/:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrT
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2