a42770ebf91f5b72b26f0a00422705ff336ea9539da6ec01435b643fb2536a3e | Triage

Sharing

General

Target

a42770ebf91f5b72b26f0a00422705ff336ea9539da6ec01435b643fb2536a3e
Size

132KB
Sample

221124-agdlaahf4z
MD5

2adfdd1fc4b6927fc14a81bc85c4a755
SHA1

4e34ec28e3339b3d536b0691e930f35efae4ab36
SHA256

a42770ebf91f5b72b26f0a00422705ff336ea9539da6ec01435b643fb2536a3e
SHA512

b99af2df56599b57a17edffe9ca249fd5841041a1fe66de1ca2851f107f259e50bd74c57a4ff091bdf368ebdb39c075d907adb0b71e8715637f5b8eecaecf6e3
SSDEEP

3072:qAp+V+xspX7//GSeIlLXkskMvB00bsMyXeWLka:qApyI+7//leIBXTkMZ00bsMyXeAk

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  a42770ebf91f5b72b26f0a00422705ff336ea9539da6ec01435b643fb2536a3e
- Size
  
  132KB
- MD5
  
  2adfdd1fc4b6927fc14a81bc85c4a755
- SHA1
  
  4e34ec28e3339b3d536b0691e930f35efae4ab36
- SHA256
  
  a42770ebf91f5b72b26f0a00422705ff336ea9539da6ec01435b643fb2536a3e
- SHA512
  
  b99af2df56599b57a17edffe9ca249fd5841041a1fe66de1ca2851f107f259e50bd74c57a4ff091bdf368ebdb39c075d907adb0b71e8715637f5b8eecaecf6e3
- SSDEEP
  
  3072:qAp+V+xspX7//GSeIlLXkskMvB00bsMyXeWLka:qApyI+7//leIBXTkMZ00bsMyXeAk
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2