84de2272532b862b12c3147d9446148b069c374bf2946138688c0303e768f816 | Triage

Sharing

General

Target

84de2272532b862b12c3147d9446148b069c374bf2946138688c0303e768f816
Size

286KB
Sample

221129-hcqztaea34
MD5

91229cd6ebf3cbfb8ae88fb1a1924556
SHA1

1cd4db8797939ec61184d71272f620352e3e8320
SHA256

84de2272532b862b12c3147d9446148b069c374bf2946138688c0303e768f816
SHA512

29a8933363440c54d460480e3d42cb9b54529c2b328606901324b851829c73b8babd070566b7c0d2af7ba850f90af3144d8e029903388ea9ce7bfd0f6b9d2aec
SSDEEP

6144:SRsDAdas5rzOD7C6z7ZbfWp8oFNzd6q8MU/yAA02syu:b0fmDesWp8oFNzd6qI+0W

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  84de2272532b862b12c3147d9446148b069c374bf2946138688c0303e768f816
- Size
  
  286KB
- MD5
  
  91229cd6ebf3cbfb8ae88fb1a1924556
- SHA1
  
  1cd4db8797939ec61184d71272f620352e3e8320
- SHA256
  
  84de2272532b862b12c3147d9446148b069c374bf2946138688c0303e768f816
- SHA512
  
  29a8933363440c54d460480e3d42cb9b54529c2b328606901324b851829c73b8babd070566b7c0d2af7ba850f90af3144d8e029903388ea9ce7bfd0f6b9d2aec
- SSDEEP
  
  6144:SRsDAdas5rzOD7C6z7ZbfWp8oFNzd6q8MU/yAA02syu:b0fmDesWp8oFNzd6qI+0W
Score

8^/10

evasion persistence
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2