4b84a4004fa52402e3ca6ca317b27a723f0d268de2cd5ef7009bd9b5debf7e25 | Triage

Sharing

General

Target

4b84a4004fa52402e3ca6ca317b27a723f0d268de2cd5ef7009bd9b5debf7e25
Size

88KB
Sample

221201-3erdksfa4v
MD5

64162576b343cce9fda6eda3a19e5750
SHA1

e273027f60628a9e583b631bea41b557a609b957
SHA256

4b84a4004fa52402e3ca6ca317b27a723f0d268de2cd5ef7009bd9b5debf7e25
SHA512

cc3a8e6aebbff71b4d4742e829c4c5caa0d86a3f8d62206a62eb54113989d14b7c3919c67665a14ccec91877404a162526a59ad9cbc4203774d26883893ba3e9
SSDEEP

1536:NlZhEUdUsyvIyWGgXQAKkOBY5GCz4Z6wKDOFJGUzOZqZBYagHx++:1PE944EtU4qZ+a

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  4b84a4004fa52402e3ca6ca317b27a723f0d268de2cd5ef7009bd9b5debf7e25
- Size
  
  88KB
- MD5
  
  64162576b343cce9fda6eda3a19e5750
- SHA1
  
  e273027f60628a9e583b631bea41b557a609b957
- SHA256
  
  4b84a4004fa52402e3ca6ca317b27a723f0d268de2cd5ef7009bd9b5debf7e25
- SHA512
  
  cc3a8e6aebbff71b4d4742e829c4c5caa0d86a3f8d62206a62eb54113989d14b7c3919c67665a14ccec91877404a162526a59ad9cbc4203774d26883893ba3e9
- SSDEEP
  
  1536:NlZhEUdUsyvIyWGgXQAKkOBY5GCz4Z6wKDOFJGUzOZqZBYagHx++:1PE944EtU4qZ+a
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2