cf0ab2f4fe7a53ae8497c87c2584d59dc929aa5d7ca5e80f9db492fd5030e78b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cf0ab2f4fe7a53ae8497c87c2584d59dc929aa5d7ca5e80f9db492fd5030e78b
Size

72KB
Sample

221203-t78nwsge99
MD5

056c26ddf7b32bb174119bf78d0a815c
SHA1

d41d4dca7eb16a5df26b887198ea9e58d061e534
SHA256

cf0ab2f4fe7a53ae8497c87c2584d59dc929aa5d7ca5e80f9db492fd5030e78b
SHA512

0e4a3119fde0d6af661bdf15f5ad968d20c2bc1c015fd3552cfbef464dd488c39ac2720a5772777dac538df1bd6ddc3a3eb40c65a0a5e8fa0a42639f2c719275
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf21:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPB

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  cf0ab2f4fe7a53ae8497c87c2584d59dc929aa5d7ca5e80f9db492fd5030e78b
- Size
  
  72KB
- MD5
  
  056c26ddf7b32bb174119bf78d0a815c
- SHA1
  
  d41d4dca7eb16a5df26b887198ea9e58d061e534
- SHA256
  
  cf0ab2f4fe7a53ae8497c87c2584d59dc929aa5d7ca5e80f9db492fd5030e78b
- SHA512
  
  0e4a3119fde0d6af661bdf15f5ad968d20c2bc1c015fd3552cfbef464dd488c39ac2720a5772777dac538df1bd6ddc3a3eb40c65a0a5e8fa0a42639f2c719275
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf21:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPB
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2