3d9d04e69828128a61f42a3f66c6de2a2709cc0bfc51c9a00102dd03b03ce929 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d9d04e69828128a61f42a3f66c6de2a2709cc0bfc51c9a00102dd03b03ce929
Size

216KB
Sample

221207-drkn5adc3z
MD5

d41439fca803ce6e03dee4d50f9ec1f6
SHA1

5d6f83064ed6b58003d720b18ff8dcf33b34c800
SHA256

3d9d04e69828128a61f42a3f66c6de2a2709cc0bfc51c9a00102dd03b03ce929
SHA512

eae41efbbd2190d21db1b6e59231e623ca5651ff971a182b2b597eb2acd2d739d534d0d72072b7db685bd81959a415b366dcb420bf44bce0219c8e1fda70fb55
SSDEEP

6144:X21/Ifrt3+TetonBi3QxRy4g09ICSnqf9uSUgkxtpsaPjK/bEoK828fwAoEn+M8t:X2Ort3+TetonBi3QxRwfnqf9uSUgkxtT

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  3d9d04e69828128a61f42a3f66c6de2a2709cc0bfc51c9a00102dd03b03ce929
- Size
  
  216KB
- MD5
  
  d41439fca803ce6e03dee4d50f9ec1f6
- SHA1
  
  5d6f83064ed6b58003d720b18ff8dcf33b34c800
- SHA256
  
  3d9d04e69828128a61f42a3f66c6de2a2709cc0bfc51c9a00102dd03b03ce929
- SHA512
  
  eae41efbbd2190d21db1b6e59231e623ca5651ff971a182b2b597eb2acd2d739d534d0d72072b7db685bd81959a415b366dcb420bf44bce0219c8e1fda70fb55
- SSDEEP
  
  6144:X21/Ifrt3+TetonBi3QxRy4g09ICSnqf9uSUgkxtpsaPjK/bEoK828fwAoEn+M8t:X2Ort3+TetonBi3QxRwfnqf9uSUgkxtT
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2