5b884c6179b3210e7e1265a7ccf1bfc7b3d5ee3cece0ea9ce6399c9216569304 | Triage

Sharing

General

Target

5b884c6179b3210e7e1265a7ccf1bfc7b3d5ee3cece0ea9ce6399c9216569304
Size

72KB
Sample

221129-rh1kwaad8t
MD5

012ccf43e86920313b40d83a11a7960c
SHA1

590665d6da20648dbdafd0d08075c56d76695aa9
SHA256

5b884c6179b3210e7e1265a7ccf1bfc7b3d5ee3cece0ea9ce6399c9216569304
SHA512

e1888f329e872196750d2ec99b7b5c777fce593d9871e74aba272899ebef5b208b30095b52609f79f639fd01ed163ed35eee0b80a8b0d6ba8f74003110f97ca4
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2k:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPQ

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  5b884c6179b3210e7e1265a7ccf1bfc7b3d5ee3cece0ea9ce6399c9216569304
- Size
  
  72KB
- MD5
  
  012ccf43e86920313b40d83a11a7960c
- SHA1
  
  590665d6da20648dbdafd0d08075c56d76695aa9
- SHA256
  
  5b884c6179b3210e7e1265a7ccf1bfc7b3d5ee3cece0ea9ce6399c9216569304
- SHA512
  
  e1888f329e872196750d2ec99b7b5c777fce593d9871e74aba272899ebef5b208b30095b52609f79f639fd01ed163ed35eee0b80a8b0d6ba8f74003110f97ca4
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2k:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPQ
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2