8758a295b0a5d045054a59ba1e017fb54b86ae638cba5f5d9d647fd08f627f9d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8758a295b0a5d045054a59ba1e017fb54b86ae638cba5f5d9d647fd08f627f9d
Size

168KB
Sample

221205-lry6hscb7t
MD5

c379de2be86108ebbe873e458e012a0b
SHA1

643725ca6a786f58a856c559dc2d5ff147fe0472
SHA256

8758a295b0a5d045054a59ba1e017fb54b86ae638cba5f5d9d647fd08f627f9d
SHA512

f5ca6fcb712cf21bf5d5d96ba82dd88a73acbdb420461026dc9a2b9ca1df7138219e6a6b033842c5d8b3619cd77a4150148882a32bc6af6fc420fdd41027a47a
SSDEEP

3072:TLQj7cyYnRshndKAH4r3h2Wm3BWjqLSmP1Vwpn24tU0FjCwH:TLQUnRshdO3oGmnCpn2S

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  8758a295b0a5d045054a59ba1e017fb54b86ae638cba5f5d9d647fd08f627f9d
- Size
  
  168KB
- MD5
  
  c379de2be86108ebbe873e458e012a0b
- SHA1
  
  643725ca6a786f58a856c559dc2d5ff147fe0472
- SHA256
  
  8758a295b0a5d045054a59ba1e017fb54b86ae638cba5f5d9d647fd08f627f9d
- SHA512
  
  f5ca6fcb712cf21bf5d5d96ba82dd88a73acbdb420461026dc9a2b9ca1df7138219e6a6b033842c5d8b3619cd77a4150148882a32bc6af6fc420fdd41027a47a
- SSDEEP
  
  3072:TLQj7cyYnRshndKAH4r3h2Wm3BWjqLSmP1Vwpn24tU0FjCwH:TLQUnRshdO3oGmnCpn2S
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2