c620ae95d19fa754cb8c5e3fa0d8833685eb85595b4bcc074c6d417808158208 | Triage

Sharing

General

Target

c620ae95d19fa754cb8c5e3fa0d8833685eb85595b4bcc074c6d417808158208
Size

224KB
Sample

221124-apg9faab6v
MD5

36979318952dc2e4cdc5d06af6c7f80c
SHA1

40f81fe913bf1b0dc6de45247c977bb7736fd7ae
SHA256

c620ae95d19fa754cb8c5e3fa0d8833685eb85595b4bcc074c6d417808158208
SHA512

9aaf24dc6c2ed19e62adb0398bf7692a3f302b3a9d8eeb29e7db68013d29314beaa603ef758c58e176cf1242dcfc35ec81b82f6e4d34c0c2403e5f637ada82b0
SSDEEP

3072:Uk6kvZjWnE51fqaAF/OVLj4UbaxxmLQTi2//9U33T+NVzo:U1kBmtaAF4RFSs

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  c620ae95d19fa754cb8c5e3fa0d8833685eb85595b4bcc074c6d417808158208
- Size
  
  224KB
- MD5
  
  36979318952dc2e4cdc5d06af6c7f80c
- SHA1
  
  40f81fe913bf1b0dc6de45247c977bb7736fd7ae
- SHA256
  
  c620ae95d19fa754cb8c5e3fa0d8833685eb85595b4bcc074c6d417808158208
- SHA512
  
  9aaf24dc6c2ed19e62adb0398bf7692a3f302b3a9d8eeb29e7db68013d29314beaa603ef758c58e176cf1242dcfc35ec81b82f6e4d34c0c2403e5f637ada82b0
- SSDEEP
  
  3072:Uk6kvZjWnE51fqaAF/OVLj4UbaxxmLQTi2//9U33T+NVzo:U1kBmtaAF4RFSs
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2