1eb49e1192b1a3ff078078aeb817153d9826de20ed45c9d2df5acd1c774fdb05 | Triage

Sharing

General

Target

1eb49e1192b1a3ff078078aeb817153d9826de20ed45c9d2df5acd1c774fdb05
Size

72KB
Sample

221107-wfvn3aafb8
MD5

023350c4903d9f8becceadbd46ec933a
SHA1

0184816507695b0d974af2d180b767fc8e1669a2
SHA256

1eb49e1192b1a3ff078078aeb817153d9826de20ed45c9d2df5acd1c774fdb05
SHA512

d708650162acc6f94b52860d8b234f5124e111c10a2358f55c1ca62d430984aad3eb0c1358dd72d76d6c459bcb77390b9d3b03948dc2c16f44d56c238a653428
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2g:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrM

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  1eb49e1192b1a3ff078078aeb817153d9826de20ed45c9d2df5acd1c774fdb05
- Size
  
  72KB
- MD5
  
  023350c4903d9f8becceadbd46ec933a
- SHA1
  
  0184816507695b0d974af2d180b767fc8e1669a2
- SHA256
  
  1eb49e1192b1a3ff078078aeb817153d9826de20ed45c9d2df5acd1c774fdb05
- SHA512
  
  d708650162acc6f94b52860d8b234f5124e111c10a2358f55c1ca62d430984aad3eb0c1358dd72d76d6c459bcb77390b9d3b03948dc2c16f44d56c238a653428
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2g:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrM
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2