e9c380ef27604481c79cb3a980adf7a6431e219404881272230dc4858c8933b7 | Triage

Sharing

General

Target

e9c380ef27604481c79cb3a980adf7a6431e219404881272230dc4858c8933b7
Size

48KB
Sample

221202-zmrsjagd5v
MD5

5ceb27794751de4bbde536c4beccb770
SHA1

c686de32b3c4fc0aed91e09f03257bb5ef5b21a5
SHA256

e9c380ef27604481c79cb3a980adf7a6431e219404881272230dc4858c8933b7
SHA512

c20386364e10469ff02cde5d95c43cdcd3eb21614b810d3f298baaf750ca2e782872522b35f17cb7b9d03f36ea2baa037a1a0ec4ba43ffb129b6ef33d13b6268
SSDEEP

768:/evN/sOhfTEr9IioMKMevN/sOhfTEr9IioMKE:/elEOhrkIwKMelEOhrkIwKE

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  e9c380ef27604481c79cb3a980adf7a6431e219404881272230dc4858c8933b7
- Size
  
  48KB
- MD5
  
  5ceb27794751de4bbde536c4beccb770
- SHA1
  
  c686de32b3c4fc0aed91e09f03257bb5ef5b21a5
- SHA256
  
  e9c380ef27604481c79cb3a980adf7a6431e219404881272230dc4858c8933b7
- SHA512
  
  c20386364e10469ff02cde5d95c43cdcd3eb21614b810d3f298baaf750ca2e782872522b35f17cb7b9d03f36ea2baa037a1a0ec4ba43ffb129b6ef33d13b6268
- SSDEEP
  
  768:/evN/sOhfTEr9IioMKMevN/sOhfTEr9IioMKE:/elEOhrkIwKMelEOhrkIwKE
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence