65756868e9d52d0613386d46323cc89fb8f91e7d8acbc2e74035ab7d99cc5309 | Triage

Sharing

General

Target

65756868e9d52d0613386d46323cc89fb8f91e7d8acbc2e74035ab7d99cc5309
Size

100KB
Sample

221203-x5cp8ahb52
MD5

e95d0876a34324a4bd40e9759866716d
SHA1

bf974b48e6049bf878ef61ee2f8c7372ed2d0a61
SHA256

65756868e9d52d0613386d46323cc89fb8f91e7d8acbc2e74035ab7d99cc5309
SHA512

01af3ba8815a2725c573085ce3c5847c5d7bbbbdd19af71ca69f2dbd7aee0256a2d350e656f5befd82b6dc50d8c90d7d8730dfa3e1e26736c34b70031d169cb7
SSDEEP

1536:akV8iAuismywssZ9Lw0wF9MGM9K/oKtNgCMbA1bL3N+NM5Uf1NIjnZs:vsZ9/KLOM52Cna

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  65756868e9d52d0613386d46323cc89fb8f91e7d8acbc2e74035ab7d99cc5309
- Size
  
  100KB
- MD5
  
  e95d0876a34324a4bd40e9759866716d
- SHA1
  
  bf974b48e6049bf878ef61ee2f8c7372ed2d0a61
- SHA256
  
  65756868e9d52d0613386d46323cc89fb8f91e7d8acbc2e74035ab7d99cc5309
- SHA512
  
  01af3ba8815a2725c573085ce3c5847c5d7bbbbdd19af71ca69f2dbd7aee0256a2d350e656f5befd82b6dc50d8c90d7d8730dfa3e1e26736c34b70031d169cb7
- SSDEEP
  
  1536:akV8iAuismywssZ9Lw0wF9MGM9K/oKtNgCMbA1bL3N+NM5Uf1NIjnZs:vsZ9/KLOM52Cna
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2