a189035d2f2d51caccf45785c8f1be1cb6fb175114897faf4862e2ec6d2ed14e | Triage

Sharing

General

Target

a189035d2f2d51caccf45785c8f1be1cb6fb175114897faf4862e2ec6d2ed14e
Size

212KB
Sample

221203-yf1anaab73
MD5

12bc5b50b19d1b25dcb1f192892b8e98
SHA1

36f053dca55a0289c23c8fefb11d7f6afe513fdc
SHA256

a189035d2f2d51caccf45785c8f1be1cb6fb175114897faf4862e2ec6d2ed14e
SHA512

c4d4b9e0f423f2af6cff08dc56f50205bdb95cc43d8073a183a3be775b8cc468acb3fde04de694f8221d4c5c4e1b4cf04c5d85f7c44a16a67e03745c893e5263
SSDEEP

6144:EdAQlUWF/B/XQSA5g9+plxVSzfuDkZHxUZgyagnZYsHmv+3sH3OU5GGE9EsWR1s6:vQHngnZYsGX

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  a189035d2f2d51caccf45785c8f1be1cb6fb175114897faf4862e2ec6d2ed14e
- Size
  
  212KB
- MD5
  
  12bc5b50b19d1b25dcb1f192892b8e98
- SHA1
  
  36f053dca55a0289c23c8fefb11d7f6afe513fdc
- SHA256
  
  a189035d2f2d51caccf45785c8f1be1cb6fb175114897faf4862e2ec6d2ed14e
- SHA512
  
  c4d4b9e0f423f2af6cff08dc56f50205bdb95cc43d8073a183a3be775b8cc468acb3fde04de694f8221d4c5c4e1b4cf04c5d85f7c44a16a67e03745c893e5263
- SSDEEP
  
  6144:EdAQlUWF/B/XQSA5g9+plxVSzfuDkZHxUZgyagnZYsHmv+3sH3OU5GGE9EsWR1s6:vQHngnZYsGX
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2