89d7c2a9f517bd2a43612eba665104baeadc75f797b4417dac22d68cbbb5be39 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89d7c2a9f517bd2a43612eba665104baeadc75f797b4417dac22d68cbbb5be39
Size

72KB
Sample

221129-rbrpdsfa86
MD5

3cebcb21164131d8f728c972d7cbea20
SHA1

78fe16e2bae08f422a2245db86436579e539507b
SHA256

89d7c2a9f517bd2a43612eba665104baeadc75f797b4417dac22d68cbbb5be39
SHA512

a67176a40e93eadae3af1aba7cb51e3e739842b7047324b2f5c8c7c64a7f6c2130f9eb571ce3d73d3a25b60da17cf1678e7c3390c0e3378d006a003864d35e9d
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2H:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrb

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  89d7c2a9f517bd2a43612eba665104baeadc75f797b4417dac22d68cbbb5be39
- Size
  
  72KB
- MD5
  
  3cebcb21164131d8f728c972d7cbea20
- SHA1
  
  78fe16e2bae08f422a2245db86436579e539507b
- SHA256
  
  89d7c2a9f517bd2a43612eba665104baeadc75f797b4417dac22d68cbbb5be39
- SHA512
  
  a67176a40e93eadae3af1aba7cb51e3e739842b7047324b2f5c8c7c64a7f6c2130f9eb571ce3d73d3a25b60da17cf1678e7c3390c0e3378d006a003864d35e9d
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2H:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrb
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2