b8308216847e9ceb2e760e2a216602ca789bacf56084de45f8e52d5e0e4868bd | Triage

Sharing

General

Target

b8308216847e9ceb2e760e2a216602ca789bacf56084de45f8e52d5e0e4868bd
Size

288KB
Sample

221202-al8l8aef84
MD5

8f1d838ba4d6c7a51a962d9abfa30c60
SHA1

b942265c3c571b1dd811d2853befa5720065468f
SHA256

b8308216847e9ceb2e760e2a216602ca789bacf56084de45f8e52d5e0e4868bd
SHA512

1df5440194c5129938cf5640a9c5b2a54de3535721777ad8151e72569344f4ec23d603b3be3b3ab2e080cebf22b22e0edae5dbc8264b45e16912bf20970b8e2f
SSDEEP

3072:AU0nUhhQdiEXIOZAksTCPkix7Fe7dEN8EXgNqf5cTrWi6ei2uiTbtTmH8Fe90p0X:70JiDbYJFsE0NMCP6wJYj8t/cx

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  b8308216847e9ceb2e760e2a216602ca789bacf56084de45f8e52d5e0e4868bd
- Size
  
  288KB
- MD5
  
  8f1d838ba4d6c7a51a962d9abfa30c60
- SHA1
  
  b942265c3c571b1dd811d2853befa5720065468f
- SHA256
  
  b8308216847e9ceb2e760e2a216602ca789bacf56084de45f8e52d5e0e4868bd
- SHA512
  
  1df5440194c5129938cf5640a9c5b2a54de3535721777ad8151e72569344f4ec23d603b3be3b3ab2e080cebf22b22e0edae5dbc8264b45e16912bf20970b8e2f
- SSDEEP
  
  3072:AU0nUhhQdiEXIOZAksTCPkix7Fe7dEN8EXgNqf5cTrWi6ei2uiTbtTmH8Fe90p0X:70JiDbYJFsE0NMCP6wJYj8t/cx
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2