c616a8c9223aa2e2ad9f66143b89d08f52348d0b0f61d4229b873a27975523bb | Triage

Sharing

General

Target

c616a8c9223aa2e2ad9f66143b89d08f52348d0b0f61d4229b873a27975523bb
Size

78KB
Sample

221123-1j833sfe23
MD5

52ab702160cd1e8bc3f5bac2e26920d0
SHA1

e6d9b10458d4ab44c1e176fa17151be2eee819a4
SHA256

c616a8c9223aa2e2ad9f66143b89d08f52348d0b0f61d4229b873a27975523bb
SHA512

052c037c93425e6dc8fbe3cc494de4f2ff4c5dacccec9257aa8a3b23715bfc5c98c10476a87b1611f635d22db2936a73aa3a5b281126100d517351def05b6983
SSDEEP

768:RpQNwC3BEddsEqOt/hyJF+x3BEJwRrPHisKl4qhR:7eTce/U/hKYuKPHisKldhR

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  c616a8c9223aa2e2ad9f66143b89d08f52348d0b0f61d4229b873a27975523bb
- Size
  
  78KB
- MD5
  
  52ab702160cd1e8bc3f5bac2e26920d0
- SHA1
  
  e6d9b10458d4ab44c1e176fa17151be2eee819a4
- SHA256
  
  c616a8c9223aa2e2ad9f66143b89d08f52348d0b0f61d4229b873a27975523bb
- SHA512
  
  052c037c93425e6dc8fbe3cc494de4f2ff4c5dacccec9257aa8a3b23715bfc5c98c10476a87b1611f635d22db2936a73aa3a5b281126100d517351def05b6983
- SSDEEP
  
  768:RpQNwC3BEddsEqOt/hyJF+x3BEJwRrPHisKl4qhR:7eTce/U/hKYuKPHisKldhR
Score

10^/10

evasion persistence
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2