4fa385441ea5ec2fa26cf7805701706317672d01ab28da51636b747a6d835ec4 | Triage

Sharing

General

Target

4fa385441ea5ec2fa26cf7805701706317672d01ab28da51636b747a6d835ec4
Size

240KB
Sample

221124-adlgqaeb34
MD5

29dd8a1363f273644c5f87554c1a69fa
SHA1

0393f6d2dd6dd3dc9f709830b7e3f89e1410bac8
SHA256

4fa385441ea5ec2fa26cf7805701706317672d01ab28da51636b747a6d835ec4
SHA512

9a5bf2747fd965f7ac7ff310c8aefd156804488798f48f917280bd176ce687fa97be6b01d36ce4c712e3a013727864b244f698ac8a0280804bfb0a9402f0c2f9
SSDEEP

6144:wx3dwqsNTNEXGlQR58EqxF6snji81RUinKq3aEESliDIM:w9dQKjeaEEp/

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  4fa385441ea5ec2fa26cf7805701706317672d01ab28da51636b747a6d835ec4
- Size
  
  240KB
- MD5
  
  29dd8a1363f273644c5f87554c1a69fa
- SHA1
  
  0393f6d2dd6dd3dc9f709830b7e3f89e1410bac8
- SHA256
  
  4fa385441ea5ec2fa26cf7805701706317672d01ab28da51636b747a6d835ec4
- SHA512
  
  9a5bf2747fd965f7ac7ff310c8aefd156804488798f48f917280bd176ce687fa97be6b01d36ce4c712e3a013727864b244f698ac8a0280804bfb0a9402f0c2f9
- SSDEEP
  
  6144:wx3dwqsNTNEXGlQR58EqxF6snji81RUinKq3aEESliDIM:w9dQKjeaEEp/
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2