19f47299d5b09f3c578f1c84ac4f5c40034b4a3dfd4785f6d5933f384df4f968 | Triage

Sharing

General

Target

19f47299d5b09f3c578f1c84ac4f5c40034b4a3dfd4785f6d5933f384df4f968
Size

348KB
Sample

221123-szbhraff9y
MD5

320d82953590b619917bea3c2f7494f2
SHA1

0b3be052878cfa4aff1578f3d92ab7669004352c
SHA256

19f47299d5b09f3c578f1c84ac4f5c40034b4a3dfd4785f6d5933f384df4f968
SHA512

9f305fdb517d6f475f5f912dd4a2266b88ef3e9b88483fb92cb7501f893d043b77f34372aa3e464b7ca1b10f2b7e6898760874e297f7abee0bde535a16ec023e
SSDEEP

6144:CnHLU1FaVNCJzt4ljFfKAVC1ES7eNg2QeXb6AtfaQX3ovF5iFuZQuy8t:CnHLtGztC0AVGVyxQeXbD3novXvZQuy0

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  19f47299d5b09f3c578f1c84ac4f5c40034b4a3dfd4785f6d5933f384df4f968
- Size
  
  348KB
- MD5
  
  320d82953590b619917bea3c2f7494f2
- SHA1
  
  0b3be052878cfa4aff1578f3d92ab7669004352c
- SHA256
  
  19f47299d5b09f3c578f1c84ac4f5c40034b4a3dfd4785f6d5933f384df4f968
- SHA512
  
  9f305fdb517d6f475f5f912dd4a2266b88ef3e9b88483fb92cb7501f893d043b77f34372aa3e464b7ca1b10f2b7e6898760874e297f7abee0bde535a16ec023e
- SSDEEP
  
  6144:CnHLU1FaVNCJzt4ljFfKAVC1ES7eNg2QeXb6AtfaQX3ovF5iFuZQuy8t:CnHLtGztC0AVGVyxQeXbD3novXvZQuy0
Score

8^/10

evasion persistence
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Adds Run key to start application
  persistence
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence