833db89b4b7eb837b9b1b136ffde1e572de164d8296ed718bffd43f77d0ccb2d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

833db89b4b7eb837b9b1b136ffde1e572de164d8296ed718bffd43f77d0ccb2d
Size

47KB
Sample

221202-b5ezpabc25
MD5

4b45dc41a593df504d6c6e61fe36785c
SHA1

b83fc5f0c43eea25106a4ece03e5ccf6a6337b8d
SHA256

833db89b4b7eb837b9b1b136ffde1e572de164d8296ed718bffd43f77d0ccb2d
SHA512

e4a47cf77102167bab22a33080adbd0cc584560a6ed7f6ad21f189d7e0ea4d394cc2f9cab41058941e972287f74d3987657f4d45e19b50aebd4ae6d2e40f2d16
SSDEEP

768:kMVvp3w/8/2ZexwbHYXp56coGAEte7cqeMjjFGbrBQVcBS7AClr6SSpiHCaitEua:kMVvp3w/8/2FMXZAEI4fMjjkbqc87rrd

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  833db89b4b7eb837b9b1b136ffde1e572de164d8296ed718bffd43f77d0ccb2d
- Size
  
  47KB
- MD5
  
  4b45dc41a593df504d6c6e61fe36785c
- SHA1
  
  b83fc5f0c43eea25106a4ece03e5ccf6a6337b8d
- SHA256
  
  833db89b4b7eb837b9b1b136ffde1e572de164d8296ed718bffd43f77d0ccb2d
- SHA512
  
  e4a47cf77102167bab22a33080adbd0cc584560a6ed7f6ad21f189d7e0ea4d394cc2f9cab41058941e972287f74d3987657f4d45e19b50aebd4ae6d2e40f2d16
- SSDEEP
  
  768:kMVvp3w/8/2ZexwbHYXp56coGAEte7cqeMjjFGbrBQVcBS7AClr6SSpiHCaitEua:kMVvp3w/8/2FMXZAEI4fMjjkbqc87rrd
Score

8^/10

evasion persistence
- Adds policy Run key to start application
  persistence
- Drops file in Drivers directory
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence