fb3970b6134a9a00dd7ccf1e67cd1a75037c464c84917a55c637d2726414aca9 | Triage

Sharing

General

Target

fb3970b6134a9a00dd7ccf1e67cd1a75037c464c84917a55c637d2726414aca9
Size

432KB
Sample

221028-1t5hmshddr
MD5

0a7487e88cabdf669ff9083bdb9c0480
SHA1

d80dfc166da78f80e923ab0e0028c418e62b57d6
SHA256

fb3970b6134a9a00dd7ccf1e67cd1a75037c464c84917a55c637d2726414aca9
SHA512

ee3a1ad71efac9a18c8f55fc03140a9a56835a085e07cb7b1aab68b45f593a9131cf28d8a7051c30d5ed9c576092f1dcabfece5b8c37f77eeebf852a7e95a9a6
SSDEEP

6144:a1VWLdIgi71nAv/szQRzf4Zj3JVyN/Y53fZ6ZsVb7j:YVWLdInSssRWjPy9Y53B6A7j

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  fb3970b6134a9a00dd7ccf1e67cd1a75037c464c84917a55c637d2726414aca9
- Size
  
  432KB
- MD5
  
  0a7487e88cabdf669ff9083bdb9c0480
- SHA1
  
  d80dfc166da78f80e923ab0e0028c418e62b57d6
- SHA256
  
  fb3970b6134a9a00dd7ccf1e67cd1a75037c464c84917a55c637d2726414aca9
- SHA512
  
  ee3a1ad71efac9a18c8f55fc03140a9a56835a085e07cb7b1aab68b45f593a9131cf28d8a7051c30d5ed9c576092f1dcabfece5b8c37f77eeebf852a7e95a9a6
- SSDEEP
  
  6144:a1VWLdIgi71nAv/szQRzf4Zj3JVyN/Y53fZ6ZsVb7j:YVWLdInSssRWjPy9Y53B6A7j
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2