c00df140ac36965d134a6769f0eb7ac3e4d2a7c906954786ce67affdd792a89a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c00df140ac36965d134a6769f0eb7ac3e4d2a7c906954786ce67affdd792a89a
Size

72KB
Sample

221129-q49j8sha5x
MD5

039951b64d3afb911e37ea6ef704aa0b
SHA1

6a312c64b84b40a4b0094f280510c87ed00e2e9b
SHA256

c00df140ac36965d134a6769f0eb7ac3e4d2a7c906954786ce67affdd792a89a
SHA512

97d3882508f6dd9650a0ac751ecbbb7c8fbce421edf130c595715c8a9ea3179eb8635d4be9348a56af620cff6365ab2c09116103ae242797eb2ac7d11c59e9cd
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2i:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPW

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  c00df140ac36965d134a6769f0eb7ac3e4d2a7c906954786ce67affdd792a89a
- Size
  
  72KB
- MD5
  
  039951b64d3afb911e37ea6ef704aa0b
- SHA1
  
  6a312c64b84b40a4b0094f280510c87ed00e2e9b
- SHA256
  
  c00df140ac36965d134a6769f0eb7ac3e4d2a7c906954786ce67affdd792a89a
- SHA512
  
  97d3882508f6dd9650a0ac751ecbbb7c8fbce421edf130c595715c8a9ea3179eb8635d4be9348a56af620cff6365ab2c09116103ae242797eb2ac7d11c59e9cd
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2i:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPW
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2