397f202a9db9f8d34c22ee16fbb0b92c7e02c1f0504228f9e869ffb616bf4999 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

397f202a9db9f8d34c22ee16fbb0b92c7e02c1f0504228f9e869ffb616bf4999
Size

72KB
Sample

221106-pw6myaebck
MD5

0e8711e7df3db08754c1bfc6bd3377af
SHA1

a987efc7d969cf995a1dae0df81beba80e8cbfcf
SHA256

397f202a9db9f8d34c22ee16fbb0b92c7e02c1f0504228f9e869ffb616bf4999
SHA512

a307e13b123bce40b08d565f6fe4ce7dee45996ba1c852256487bf49cec79191ea0834d14fe196e1a21891ff82027e8d922bd704e2554c9ebde5746fa3724f44
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2R:ipQNwC3BEddsEqOt/hyJF+x3BEJwRr9

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  397f202a9db9f8d34c22ee16fbb0b92c7e02c1f0504228f9e869ffb616bf4999
- Size
  
  72KB
- MD5
  
  0e8711e7df3db08754c1bfc6bd3377af
- SHA1
  
  a987efc7d969cf995a1dae0df81beba80e8cbfcf
- SHA256
  
  397f202a9db9f8d34c22ee16fbb0b92c7e02c1f0504228f9e869ffb616bf4999
- SHA512
  
  a307e13b123bce40b08d565f6fe4ce7dee45996ba1c852256487bf49cec79191ea0834d14fe196e1a21891ff82027e8d922bd704e2554c9ebde5746fa3724f44
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2R:ipQNwC3BEddsEqOt/hyJF+x3BEJwRr9
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2