ad9f4251bede76b855922e9ceb06e5ce2fb407499b5fd61b3c858140232166ca | Triage

Sharing

General

Target

ad9f4251bede76b855922e9ceb06e5ce2fb407499b5fd61b3c858140232166ca
Size

12KB
Sample

221128-arg2fsfa31
MD5

6ae20d67905e7a08d9557ca32e7323c4
SHA1

af2da143d5d7463f2b5987f3fb1fd1b2bde11f43
SHA256

ad9f4251bede76b855922e9ceb06e5ce2fb407499b5fd61b3c858140232166ca
SHA512

5fcf6a5db1ff259f56e6f1e6d6be7f9b0dc6f58bbf58db2126f5b7a67869a87499dde73367e772d1d2facd5eccee8a2c81cefc6a919cd94e1998845f2e4aeb96
SSDEEP

384:mESPOUaORge+CAbGaZUYT0sJYLI1dJGRb:mxPOUaKhZByUQ1w

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  ad9f4251bede76b855922e9ceb06e5ce2fb407499b5fd61b3c858140232166ca
- Size
  
  12KB
- MD5
  
  6ae20d67905e7a08d9557ca32e7323c4
- SHA1
  
  af2da143d5d7463f2b5987f3fb1fd1b2bde11f43
- SHA256
  
  ad9f4251bede76b855922e9ceb06e5ce2fb407499b5fd61b3c858140232166ca
- SHA512
  
  5fcf6a5db1ff259f56e6f1e6d6be7f9b0dc6f58bbf58db2126f5b7a67869a87499dde73367e772d1d2facd5eccee8a2c81cefc6a919cd94e1998845f2e4aeb96
- SSDEEP
  
  384:mESPOUaORge+CAbGaZUYT0sJYLI1dJGRb:mxPOUaKhZByUQ1w
Score

8^/10

evasion
- Executes dropped EXE
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Credential Access

Discovery

Process Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2