d5af49de6207c32d04270e4c5590a9e6f355d9f9b0a4347a407d41709fd9676e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d5af49de6207c32d04270e4c5590a9e6f355d9f9b0a4347a407d41709fd9676e
Size

72KB
Sample

221129-q16n6sgf4x
MD5

033b7c40abc728d240e38d8b83431b35
SHA1

4356f932f3b48893510f665adb86da09dcaaaff8
SHA256

d5af49de6207c32d04270e4c5590a9e6f355d9f9b0a4347a407d41709fd9676e
SHA512

640c8c1f0361f9c435f780fd5d41f439ad5fec8bdcc2ae1255964be3fc1f38ac7b6829c5e7c3acb8b5e6cd37a0e0bed445bc013065ab3a7cd5d20d59d8e88c5f
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2D:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPX

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  d5af49de6207c32d04270e4c5590a9e6f355d9f9b0a4347a407d41709fd9676e
- Size
  
  72KB
- MD5
  
  033b7c40abc728d240e38d8b83431b35
- SHA1
  
  4356f932f3b48893510f665adb86da09dcaaaff8
- SHA256
  
  d5af49de6207c32d04270e4c5590a9e6f355d9f9b0a4347a407d41709fd9676e
- SHA512
  
  640c8c1f0361f9c435f780fd5d41f439ad5fec8bdcc2ae1255964be3fc1f38ac7b6829c5e7c3acb8b5e6cd37a0e0bed445bc013065ab3a7cd5d20d59d8e88c5f
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2D:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPX
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2