8cf63c500f55ab0fdcb2ed1c354d509503d297ef214ec59a60fe428e711dc80b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8cf63c500f55ab0fdcb2ed1c354d509503d297ef214ec59a60fe428e711dc80b
Size

224KB
Sample

221202-ahak1sec88
MD5

f7cd3ca68868c76ebf437c68cd0de372
SHA1

0dba920c38ab9d2b4806de08d6e01cadc30e3203
SHA256

8cf63c500f55ab0fdcb2ed1c354d509503d297ef214ec59a60fe428e711dc80b
SHA512

e2bf2d3ac19054e823900aedb3cd9139fae08f4a1560b7dd11ec0429372e0d7a6fcc14605cb084fab1338e66f4029ac1abfea93218cbf3e9814c85106dd388d0
SSDEEP

3072:hiY27aWbqDImDrT+UvtkvnNBLieMyiayNe2XKrJlZm7lD:hFSuImDrT+U1QtMyiaO6Y

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  8cf63c500f55ab0fdcb2ed1c354d509503d297ef214ec59a60fe428e711dc80b
- Size
  
  224KB
- MD5
  
  f7cd3ca68868c76ebf437c68cd0de372
- SHA1
  
  0dba920c38ab9d2b4806de08d6e01cadc30e3203
- SHA256
  
  8cf63c500f55ab0fdcb2ed1c354d509503d297ef214ec59a60fe428e711dc80b
- SHA512
  
  e2bf2d3ac19054e823900aedb3cd9139fae08f4a1560b7dd11ec0429372e0d7a6fcc14605cb084fab1338e66f4029ac1abfea93218cbf3e9814c85106dd388d0
- SSDEEP
  
  3072:hiY27aWbqDImDrT+UvtkvnNBLieMyiayNe2XKrJlZm7lD:hFSuImDrT+U1QtMyiaO6Y
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2