a0d6a201ad600de8df5400c1966811cbbe735016aaadc425ab8454295f6096d3 | Triage

Sharing

General

Target

a0d6a201ad600de8df5400c1966811cbbe735016aaadc425ab8454295f6096d3
Size

232KB
Sample

221205-lms4psbf9s
MD5

771d377461b7a51656c87fb7a172939e
SHA1

821c9253e2c5aaa72c3e77b4d1c33c9423e6a5c3
SHA256

a0d6a201ad600de8df5400c1966811cbbe735016aaadc425ab8454295f6096d3
SHA512

179340e3e922f32d5091fc06d681949e2365fe3ca35d7cbec8557231982c45cc6df5b65efd32e31f8471faf172c80f73bc08136859725444816f2b056a06874d
SSDEEP

6144:QyG03PFKs78vpRTlEqxF6snji81RUinKbLYx:bPhpu

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  a0d6a201ad600de8df5400c1966811cbbe735016aaadc425ab8454295f6096d3
- Size
  
  232KB
- MD5
  
  771d377461b7a51656c87fb7a172939e
- SHA1
  
  821c9253e2c5aaa72c3e77b4d1c33c9423e6a5c3
- SHA256
  
  a0d6a201ad600de8df5400c1966811cbbe735016aaadc425ab8454295f6096d3
- SHA512
  
  179340e3e922f32d5091fc06d681949e2365fe3ca35d7cbec8557231982c45cc6df5b65efd32e31f8471faf172c80f73bc08136859725444816f2b056a06874d
- SSDEEP
  
  6144:QyG03PFKs78vpRTlEqxF6snji81RUinKbLYx:bPhpu
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2