7a1dafdd222c74cd2ea4c30ac6d03d67327a821a67f30d38153d62bee93e3450 | Triage

Sharing

General

Target

7a1dafdd222c74cd2ea4c30ac6d03d67327a821a67f30d38153d62bee93e3450
Size

190KB
Sample

221107-ge83qsbaa9
MD5

09acbf3f66d3590145faf12afe888d45
SHA1

a64188144372ed30adbe3b486d8921f5466de342
SHA256

7a1dafdd222c74cd2ea4c30ac6d03d67327a821a67f30d38153d62bee93e3450
SHA512

b6ec03cc3599e6b12e438da1496fa3d809908649fb2e8f9192e10fc6963791a7f5315f33676965ca210e7e63b5ce28e716078917598999f1877f1e537d7f3d8f
SSDEEP

1536:9sYGQLphzQHUyRPkN2HpuP7jIPe5MQVgd54vZqoqcKObY0/CTAgwFu/CTAgwF5:yQL/bCrYIPe5ML7KqmKv0WsuWs5

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  7a1dafdd222c74cd2ea4c30ac6d03d67327a821a67f30d38153d62bee93e3450
- Size
  
  190KB
- MD5
  
  09acbf3f66d3590145faf12afe888d45
- SHA1
  
  a64188144372ed30adbe3b486d8921f5466de342
- SHA256
  
  7a1dafdd222c74cd2ea4c30ac6d03d67327a821a67f30d38153d62bee93e3450
- SHA512
  
  b6ec03cc3599e6b12e438da1496fa3d809908649fb2e8f9192e10fc6963791a7f5315f33676965ca210e7e63b5ce28e716078917598999f1877f1e537d7f3d8f
- SSDEEP
  
  1536:9sYGQLphzQHUyRPkN2HpuP7jIPe5MQVgd54vZqoqcKObY0/CTAgwFu/CTAgwF5:yQL/bCrYIPe5ML7KqmKv0WsuWs5
Score

10^/10

evasion persistence
- Modifies visibility of file extensions in Explorer
  evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence