cc885b5083856bab56d055b4aeadd9537e672245f7dabb0cff0fdb5480a4c491 | Triage

Sharing

General

Target

cc885b5083856bab56d055b4aeadd9537e672245f7dabb0cff0fdb5480a4c491
Size

476KB
Sample

221203-xtncksbg7x
MD5

f819a8489b6366921d506dd9214719f3
SHA1

2100bff84d50ff9080ad0b1a01cd388154fb7101
SHA256

cc885b5083856bab56d055b4aeadd9537e672245f7dabb0cff0fdb5480a4c491
SHA512

1c1d9d397d50002de3d741cb968bacea7a15c458e866cbe1b7448480d6bb67c54d9fa0046bc8c380e94af865c9fe592a40d942474ea6048b766b666ce7322018
SSDEEP

12288:QewO7X/Ib9wA1pDdTvSvm3IMSCqNo9XyGgYS6kXX/gUOd:Q4j/Ib9wAzdDv3IMSCqN4XyGgYS6kHSd

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  cc885b5083856bab56d055b4aeadd9537e672245f7dabb0cff0fdb5480a4c491
- Size
  
  476KB
- MD5
  
  f819a8489b6366921d506dd9214719f3
- SHA1
  
  2100bff84d50ff9080ad0b1a01cd388154fb7101
- SHA256
  
  cc885b5083856bab56d055b4aeadd9537e672245f7dabb0cff0fdb5480a4c491
- SHA512
  
  1c1d9d397d50002de3d741cb968bacea7a15c458e866cbe1b7448480d6bb67c54d9fa0046bc8c380e94af865c9fe592a40d942474ea6048b766b666ce7322018
- SSDEEP
  
  12288:QewO7X/Ib9wA1pDdTvSvm3IMSCqNo9XyGgYS6kXX/gUOd:Q4j/Ib9wAzdDv3IMSCqN4XyGgYS6kHSd
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2