a2c18d449aaf2c0ee899af7402169129b14a5c0fc5f36cd84566a0f3f19797d7 | Triage

Sharing

General

Target

a2c18d449aaf2c0ee899af7402169129b14a5c0fc5f36cd84566a0f3f19797d7
Size

232KB
Sample

221123-tdll9sgg81
MD5

43fe0ce228af0cd94c860aac6329a700
SHA1

d526fb075fb0e1258afdc74486199d5706af93ad
SHA256

a2c18d449aaf2c0ee899af7402169129b14a5c0fc5f36cd84566a0f3f19797d7
SHA512

24203efc0e558cdcdbdf4dc14e69fc3fac42c4dd37a474fadbd6924a6568fd93fbf00c8b7627017115d6c68b94e7fd1b4eb08b06ed406d70f9fb4142339f71e1
SSDEEP

3072:bD64wfWRrIMNRlZ62Pal2LBJXmzOHm5WZ3K+MCEFqTcWEyxeL2mDHLz/5L5DEr6s:H6zepp3PJXCOGY3eNFRFyMdL5DEr6Ul

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  a2c18d449aaf2c0ee899af7402169129b14a5c0fc5f36cd84566a0f3f19797d7
- Size
  
  232KB
- MD5
  
  43fe0ce228af0cd94c860aac6329a700
- SHA1
  
  d526fb075fb0e1258afdc74486199d5706af93ad
- SHA256
  
  a2c18d449aaf2c0ee899af7402169129b14a5c0fc5f36cd84566a0f3f19797d7
- SHA512
  
  24203efc0e558cdcdbdf4dc14e69fc3fac42c4dd37a474fadbd6924a6568fd93fbf00c8b7627017115d6c68b94e7fd1b4eb08b06ed406d70f9fb4142339f71e1
- SSDEEP
  
  3072:bD64wfWRrIMNRlZ62Pal2LBJXmzOHm5WZ3K+MCEFqTcWEyxeL2mDHLz/5L5DEr6s:H6zepp3PJXCOGY3eNFRFyMdL5DEr6Ul
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2