c0dfa51657d72d26ab58594bca7fd35e6e41e57085436974efd4ffd25e4445b8 | Triage

Resubmissions

31/10/2023, 07:12

231031-h1xr9shb9w 6

31/10/2023, 07:09

231031-hy68xsbc69 6

31/10/2023, 07:01

231031-htdqtabc49 6

Sharing

General

Target

HideUL.zip
Size

475KB
Sample

231031-hy68xsbc69
MD5

4d6571be9b94188bc77df9a82c50780d
SHA1

a0b83d2533973202237c3d9dda84aadaba4d6dbb
SHA256

c0dfa51657d72d26ab58594bca7fd35e6e41e57085436974efd4ffd25e4445b8
SHA512

e42ab43d5715ecab78115feb6179feebe17fa111c66abf90f83566e5faa544227e813d06416698f81e8f70753396ce6610cac8cab8f9e855da6ecd40bbe3570b
SSDEEP

12288:2DfKjP5ZJtxSs5vZc7rlaDZNYdiixFiiMSqKZ:iCJtxjxZqUDZCRidKZ

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  HideUL/HideUL.exe
- Size
  
  779KB
- MD5
  
  59e6919b61bcef4225d571e10fb13ef2
- SHA1
  
  c864cb1e389c51bdea6cecfed47162e6a03f1e22
- SHA256
  
  65ceb24e66bdac7453863bf268316bf6b6b17070ae1100713027c0be398e61f6
- SHA512
  
  c904007bd0989c6be41ce1afbbf05fa72d4f81a8b5a4e81e0fda11030e772d6a33c21fad0fe4e1faf97ec0611427a8c7aa6366d5920714e835ba80444f76d89c
- SSDEEP
  
  12288:daWzgMg7v3qnCiMErQohh0F4TCJ8lnyJQY4ZNGdiXJpp05iwQK:8aHMv6C4rjXnyJQRZYiA5kK
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1