3d12b44cdf6d37ec06e0df79bba3f16ab5c97ab47a6f81e4f4cc4bfac93a4a69 | Triage

Sharing

General

Target

3d12b44cdf6d37ec06e0df79bba3f16ab5c97ab47a6f81e4f4cc4bfac93a4a69
Size

72KB
Sample

221129-rmm6caah2t
MD5

04455d9467ba87cfc36653b3033a02e5
SHA1

91c8683f473571c6431b31f117397a774c3ec7c4
SHA256

3d12b44cdf6d37ec06e0df79bba3f16ab5c97ab47a6f81e4f4cc4bfac93a4a69
SHA512

add9a89c6f016ed5bd11ce46f36dbfbd62757ab020b62ebffee0cdeee47fb43a1c102cf1a2accdc39de09a1bb2e136dcb0ae417b322636762219dbed29a1c22b
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2N:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrP5

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  3d12b44cdf6d37ec06e0df79bba3f16ab5c97ab47a6f81e4f4cc4bfac93a4a69
- Size
  
  72KB
- MD5
  
  04455d9467ba87cfc36653b3033a02e5
- SHA1
  
  91c8683f473571c6431b31f117397a774c3ec7c4
- SHA256
  
  3d12b44cdf6d37ec06e0df79bba3f16ab5c97ab47a6f81e4f4cc4bfac93a4a69
- SHA512
  
  add9a89c6f016ed5bd11ce46f36dbfbd62757ab020b62ebffee0cdeee47fb43a1c102cf1a2accdc39de09a1bb2e136dcb0ae417b322636762219dbed29a1c22b
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2N:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrP5
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2