f2af7cd5e26a8b937e29f30fdbce846f7dc01616fe711c74da474e284185f68e | Triage

Sharing

General

Target

f2af7cd5e26a8b937e29f30fdbce846f7dc01616fe711c74da474e284185f68e
Size

328KB
Sample

221124-vlsafsgf55
MD5

8d1c6effa663ddc8782cc4cb56f81fb6
SHA1

970cb2ddfcf29b8aad2069b5d8a04be32e94903e
SHA256

f2af7cd5e26a8b937e29f30fdbce846f7dc01616fe711c74da474e284185f68e
SHA512

7202e4b9043e466c059a29186727e5e919370d58e699a97c71c93161ae59fa3b25abe0422217e14a75e63b80e8835e7a91b08de3fd729ae7e39750f9f63c62d4
SSDEEP

6144:PZw5bV+pDR66lNJzoVjPOKUA8E+ymkv+qFNXzgoEy:qKw6JzWWhm5vz

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  f2af7cd5e26a8b937e29f30fdbce846f7dc01616fe711c74da474e284185f68e
- Size
  
  328KB
- MD5
  
  8d1c6effa663ddc8782cc4cb56f81fb6
- SHA1
  
  970cb2ddfcf29b8aad2069b5d8a04be32e94903e
- SHA256
  
  f2af7cd5e26a8b937e29f30fdbce846f7dc01616fe711c74da474e284185f68e
- SHA512
  
  7202e4b9043e466c059a29186727e5e919370d58e699a97c71c93161ae59fa3b25abe0422217e14a75e63b80e8835e7a91b08de3fd729ae7e39750f9f63c62d4
- SSDEEP
  
  6144:PZw5bV+pDR66lNJzoVjPOKUA8E+ymkv+qFNXzgoEy:qKw6JzWWhm5vz
Score

8^/10

evasion persistence
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2