9923eefc58077dc5f4f0f6f775817757ad9bf0ed927dfe447042d1229888396c | Triage

Sharing

General

Target

9923eefc58077dc5f4f0f6f775817757ad9bf0ed927dfe447042d1229888396c
Size

92KB
Sample

221202-a6vabsbg6y
MD5

c51c3d6de45e0f6e6cf0d497b2bb08e7
SHA1

a48b55314d534821816e517a76210e0147882f1b
SHA256

9923eefc58077dc5f4f0f6f775817757ad9bf0ed927dfe447042d1229888396c
SHA512

d20dc9030166a707c142f907b6f496d8ece77382272804d98a6f99715a523fe69b010598a22fc88751ec487990de35be3cdc69a2c8ea303028d568be42a3bf34
SSDEEP

384:qT6bgl86+yyA2UVYrpZAB/5e3u4uJV7aGNjRjaUEUxto3W4oE+uAVB/5dYrpZgUb:qnxhV6ehA3UB3n3fo7J+RVhj6jCx

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  9923eefc58077dc5f4f0f6f775817757ad9bf0ed927dfe447042d1229888396c
- Size
  
  92KB
- MD5
  
  c51c3d6de45e0f6e6cf0d497b2bb08e7
- SHA1
  
  a48b55314d534821816e517a76210e0147882f1b
- SHA256
  
  9923eefc58077dc5f4f0f6f775817757ad9bf0ed927dfe447042d1229888396c
- SHA512
  
  d20dc9030166a707c142f907b6f496d8ece77382272804d98a6f99715a523fe69b010598a22fc88751ec487990de35be3cdc69a2c8ea303028d568be42a3bf34
- SSDEEP
  
  384:qT6bgl86+yyA2UVYrpZAB/5e3u4uJV7aGNjRjaUEUxto3W4oE+uAVB/5dYrpZgUb:qnxhV6ehA3UB3n3fo7J+RVhj6jCx
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2