0b9db17a97fb2ba1ea86146b0712a51eae04db9695599405bc8bdf1d200bc1e8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b9db17a97fb2ba1ea86146b0712a51eae04db9695599405bc8bdf1d200bc1e8
Size

72KB
Sample

221205-ybxzqscg5z
MD5

0030f08776c667e0b8ad804decefbbcf
SHA1

e8224f3c09f8dabc9e21d9e3552051e9855198b1
SHA256

0b9db17a97fb2ba1ea86146b0712a51eae04db9695599405bc8bdf1d200bc1e8
SHA512

ccb3c660209303b8b2aa67516334be54f549c986eac5d155c23b77d137b5975e949e0c0ea67505b470633983b94ee270a01b619745b426e8fbbb8fee0b556765
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf26:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPO

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  0b9db17a97fb2ba1ea86146b0712a51eae04db9695599405bc8bdf1d200bc1e8
- Size
  
  72KB
- MD5
  
  0030f08776c667e0b8ad804decefbbcf
- SHA1
  
  e8224f3c09f8dabc9e21d9e3552051e9855198b1
- SHA256
  
  0b9db17a97fb2ba1ea86146b0712a51eae04db9695599405bc8bdf1d200bc1e8
- SHA512
  
  ccb3c660209303b8b2aa67516334be54f549c986eac5d155c23b77d137b5975e949e0c0ea67505b470633983b94ee270a01b619745b426e8fbbb8fee0b556765
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf26:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPO
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2