a07e6b4763936b2a57d816e65cc9c2e654bbe0b8ebf61c4b5b8a9e57a3f69012 | Triage

Sharing

General

Target

a07e6b4763936b2a57d816e65cc9c2e654bbe0b8ebf61c4b5b8a9e57a3f69012
Size

496KB
Sample

221106-m7864abbel
MD5

11e151b934eb4fbddf7011ecf7601181
SHA1

8d974f4331fd845add44af8ce2c3c8c2c353a90c
SHA256

a07e6b4763936b2a57d816e65cc9c2e654bbe0b8ebf61c4b5b8a9e57a3f69012
SHA512

498916e4cd81b35ba0debaad89d487deb511e89b02a475e5b5018278ca46e2f23a8622aae3cbb2f521c6a21ed7d68444264121c1f2e2749cdbed3bf83aac0f94
SSDEEP

12288:oxckcFwY9rXkEzmMH+rffHD7bUiR1bW4OhsHKawSwFoUiXPlEd2VfRtkO:jbTXkEzmMH+rffHDXUQbW4OhsHKawSwD

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  a07e6b4763936b2a57d816e65cc9c2e654bbe0b8ebf61c4b5b8a9e57a3f69012
- Size
  
  496KB
- MD5
  
  11e151b934eb4fbddf7011ecf7601181
- SHA1
  
  8d974f4331fd845add44af8ce2c3c8c2c353a90c
- SHA256
  
  a07e6b4763936b2a57d816e65cc9c2e654bbe0b8ebf61c4b5b8a9e57a3f69012
- SHA512
  
  498916e4cd81b35ba0debaad89d487deb511e89b02a475e5b5018278ca46e2f23a8622aae3cbb2f521c6a21ed7d68444264121c1f2e2749cdbed3bf83aac0f94
- SSDEEP
  
  12288:oxckcFwY9rXkEzmMH+rffHD7bUiR1bW4OhsHKawSwFoUiXPlEd2VfRtkO:jbTXkEzmMH+rffHDXUQbW4OhsHKawSwD
Score

10^/10

evasion persistence
- Modifies visibility of file extensions in Explorer
  evasion
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence