f2392bd1fba3dbff29e52573df2f50ff856572bcf810cca6547e4129c6a6c325 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f2392bd1fba3dbff29e52573df2f50ff856572bcf810cca6547e4129c6a6c325
Size

72KB
Sample

221129-qw89hadf64
MD5

042d75e937125f109accc584ca4b3629
SHA1

dd85fcecd49976e4b8b4e955b4d8ca94025d0b21
SHA256

f2392bd1fba3dbff29e52573df2f50ff856572bcf810cca6547e4129c6a6c325
SHA512

4b327c5f77a5c1b618c1c943340804297f525de4b10e867c89f93f6837cfdb2a2c803be2e9ad627d50637cd158424c0daadded107b3bffb3dd5e67f1bb0ce8cd
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2t:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPZ

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  f2392bd1fba3dbff29e52573df2f50ff856572bcf810cca6547e4129c6a6c325
- Size
  
  72KB
- MD5
  
  042d75e937125f109accc584ca4b3629
- SHA1
  
  dd85fcecd49976e4b8b4e955b4d8ca94025d0b21
- SHA256
  
  f2392bd1fba3dbff29e52573df2f50ff856572bcf810cca6547e4129c6a6c325
- SHA512
  
  4b327c5f77a5c1b618c1c943340804297f525de4b10e867c89f93f6837cfdb2a2c803be2e9ad627d50637cd158424c0daadded107b3bffb3dd5e67f1bb0ce8cd
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2t:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPZ
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2