879fbc0ad06436d1ec5bf37b5f2fa42fc0e38e4c1079ec666f77ee5016ccc69f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

879fbc0ad06436d1ec5bf37b5f2fa42fc0e38e4c1079ec666f77ee5016ccc69f
Size

327KB
Sample

221201-1l9sdsgh2v
MD5

334d4c9ef886a48742fe71571741eb75
SHA1

afebe8be7572d14f1511a438c171b0adc9171e09
SHA256

879fbc0ad06436d1ec5bf37b5f2fa42fc0e38e4c1079ec666f77ee5016ccc69f
SHA512

2a6c062f09a0eaa77d9b9bfae056859afa3b9db9c6c0c865690fcaecf539127ae456e1c180e9a9018e5579c867e45c69f8a0eed7956ac99ae81c06111ce4b2e8
SSDEEP

3072:3JG8ovrfvnXx6F0U46e5xS4qAWSrv24nQUcLa0e0R+5+i+Br5+6Mch8mrJNRHdO/:Qr7vBvP3xzv2he4Fi+nD6qR306xIRy

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  879fbc0ad06436d1ec5bf37b5f2fa42fc0e38e4c1079ec666f77ee5016ccc69f
- Size
  
  327KB
- MD5
  
  334d4c9ef886a48742fe71571741eb75
- SHA1
  
  afebe8be7572d14f1511a438c171b0adc9171e09
- SHA256
  
  879fbc0ad06436d1ec5bf37b5f2fa42fc0e38e4c1079ec666f77ee5016ccc69f
- SHA512
  
  2a6c062f09a0eaa77d9b9bfae056859afa3b9db9c6c0c865690fcaecf539127ae456e1c180e9a9018e5579c867e45c69f8a0eed7956ac99ae81c06111ce4b2e8
- SSDEEP
  
  3072:3JG8ovrfvnXx6F0U46e5xS4qAWSrv24nQUcLa0e0R+5+i+Br5+6Mch8mrJNRHdO/:Qr7vBvP3xzv2he4Fi+nD6qR306xIRy
Score

8^/10

evasion persistence
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2