f646d1901a7f6c7d9abb558373309fa0067ca4080533b9530a72928ac362f1df | Triage

Sharing

General

Target

f646d1901a7f6c7d9abb558373309fa0067ca4080533b9530a72928ac362f1df
Size

256KB
Sample

221203-vye6nadg51
MD5

0d4cdf5cf99a75ac6d6393afc770e050
SHA1

de9983f3caec9e298ca3d0c699aee80b93e19aa2
SHA256

f646d1901a7f6c7d9abb558373309fa0067ca4080533b9530a72928ac362f1df
SHA512

bfd8dbfff49b2f8b91a6aa61ce11d1b3476a0de7d0adc4bdfea07a6abefb5c8ab5d7e64c8437511f386279c39ce2d2c5573b94f2bcf1ae44a76bfd73d0fdee62
SSDEEP

6144:ev7avoNymi+7eeyz2P9NnnnFCpImnTZygoHlKnvmb7/D26UBnmbLBXSG:eGvoNymi+7eOP9anTZygoHlKnvmb7/Dr

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  f646d1901a7f6c7d9abb558373309fa0067ca4080533b9530a72928ac362f1df
- Size
  
  256KB
- MD5
  
  0d4cdf5cf99a75ac6d6393afc770e050
- SHA1
  
  de9983f3caec9e298ca3d0c699aee80b93e19aa2
- SHA256
  
  f646d1901a7f6c7d9abb558373309fa0067ca4080533b9530a72928ac362f1df
- SHA512
  
  bfd8dbfff49b2f8b91a6aa61ce11d1b3476a0de7d0adc4bdfea07a6abefb5c8ab5d7e64c8437511f386279c39ce2d2c5573b94f2bcf1ae44a76bfd73d0fdee62
- SSDEEP
  
  6144:ev7avoNymi+7eeyz2P9NnnnFCpImnTZygoHlKnvmb7/D26UBnmbLBXSG:eGvoNymi+7eOP9anTZygoHlKnvmb7/Dr
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2