d8a7ba5ec3588e592286a8a49956dd15ad8eab6ea99c69fbb02ed8de52e3c223 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d8a7ba5ec3588e592286a8a49956dd15ad8eab6ea99c69fbb02ed8de52e3c223
Size

232KB
Sample

221129-vge5bsgd57
MD5

234f5a691252b35e759faf9ed4367c40
SHA1

8fd6ba0cb710c4fed6cef49933e13e75ff8cb0ee
SHA256

d8a7ba5ec3588e592286a8a49956dd15ad8eab6ea99c69fbb02ed8de52e3c223
SHA512

2a3244b4e42175ead6bff2823814a88858ba99c224cdd8e1cafce6e95e9586b997beab6af51a70a6b42f5be8055f469e116c2f54a60611428f0478c34b1d886b
SSDEEP

1536:hbz5l+GomoDo0omoEo4A5AVzotokoXoOoioVo2oEogoFoPoeoWooo7oxozoZoMod:57+JA5AVap/+

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  d8a7ba5ec3588e592286a8a49956dd15ad8eab6ea99c69fbb02ed8de52e3c223
- Size
  
  232KB
- MD5
  
  234f5a691252b35e759faf9ed4367c40
- SHA1
  
  8fd6ba0cb710c4fed6cef49933e13e75ff8cb0ee
- SHA256
  
  d8a7ba5ec3588e592286a8a49956dd15ad8eab6ea99c69fbb02ed8de52e3c223
- SHA512
  
  2a3244b4e42175ead6bff2823814a88858ba99c224cdd8e1cafce6e95e9586b997beab6af51a70a6b42f5be8055f469e116c2f54a60611428f0478c34b1d886b
- SSDEEP
  
  1536:hbz5l+GomoDo0omoEo4A5AVzotokoXoOoioVo2oEogoFoPoeoWooo7oxozoZoMod:57+JA5AVap/+
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2