d10fdb79d9e4e3371d94cee29bce3d6f4bc80a0a37afd4832e068a1f5e7d339d | Triage

Sharing

General

Target

d10fdb79d9e4e3371d94cee29bce3d6f4bc80a0a37afd4832e068a1f5e7d339d
Size

112KB
Sample

221124-an5y4seh98
MD5

1637eeed8ba17eba2c9d69cde053f427
SHA1

d3d03d1f7932df4c6fc45b4814d6c5f1b4388d6d
SHA256

d10fdb79d9e4e3371d94cee29bce3d6f4bc80a0a37afd4832e068a1f5e7d339d
SHA512

22a7dceea368aa27aa7e576475f12e8713b8a2e3d0197823e06e5267b4f71c24c825103b0c01fb98ba7e4b5eb2b388ad7fe5e8b80221516060041966ee9a8916
SSDEEP

1536:gH8ytUs7bg4htUVGLG/wXJYeUj27dTo13i6EmqS:KDUVeG/wXJY527uj

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  d10fdb79d9e4e3371d94cee29bce3d6f4bc80a0a37afd4832e068a1f5e7d339d
- Size
  
  112KB
- MD5
  
  1637eeed8ba17eba2c9d69cde053f427
- SHA1
  
  d3d03d1f7932df4c6fc45b4814d6c5f1b4388d6d
- SHA256
  
  d10fdb79d9e4e3371d94cee29bce3d6f4bc80a0a37afd4832e068a1f5e7d339d
- SHA512
  
  22a7dceea368aa27aa7e576475f12e8713b8a2e3d0197823e06e5267b4f71c24c825103b0c01fb98ba7e4b5eb2b388ad7fe5e8b80221516060041966ee9a8916
- SSDEEP
  
  1536:gH8ytUs7bg4htUVGLG/wXJYeUj27dTo13i6EmqS:KDUVeG/wXJY527uj
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2