b0fa18d9b4a7a23db9535ef4bd67fb7cb09baecec6a881a711612261848d89c9 | Triage

Sharing

General

Target

b0fa18d9b4a7a23db9535ef4bd67fb7cb09baecec6a881a711612261848d89c9
Size

72KB
Sample

221202-ybtbjsgb38
MD5

cded00f32c51ac2a58b7ae17cc7156ab
SHA1

4749495caed50aa1d68f0bdcf7b0c6d9697a2a0d
SHA256

b0fa18d9b4a7a23db9535ef4bd67fb7cb09baecec6a881a711612261848d89c9
SHA512

ea4917f0b430e9ab8d32b1c435385232b65fc98cb69318dd1a591adee2b884de6121c2d59f74c65118378d807e81c4d566ff45c89e37fb8ba9b3c19d744ecdfe
SSDEEP

384:N6wayA+1mwnA353BXR+oGfPmfm4MlcTGXdhjwroyY2rebV5O6KgxWb/83BXR+oGu:NpQNwC3BESe4Vqth+0V5vKlE3BEJwRrj

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  b0fa18d9b4a7a23db9535ef4bd67fb7cb09baecec6a881a711612261848d89c9
- Size
  
  72KB
- MD5
  
  cded00f32c51ac2a58b7ae17cc7156ab
- SHA1
  
  4749495caed50aa1d68f0bdcf7b0c6d9697a2a0d
- SHA256
  
  b0fa18d9b4a7a23db9535ef4bd67fb7cb09baecec6a881a711612261848d89c9
- SHA512
  
  ea4917f0b430e9ab8d32b1c435385232b65fc98cb69318dd1a591adee2b884de6121c2d59f74c65118378d807e81c4d566ff45c89e37fb8ba9b3c19d744ecdfe
- SSDEEP
  
  384:N6wayA+1mwnA353BXR+oGfPmfm4MlcTGXdhjwroyY2rebV5O6KgxWb/83BXR+oGu:NpQNwC3BESe4Vqth+0V5vKlE3BEJwRrj
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2