9830a1ef06408430b61a7823850572656b852c0bb184bccf14f552046fa4b5f9 | Triage

Sharing

General

Target

0906d9dfbf69eb80618714011459007b
Size

143KB
Sample

231224-v93q4aagaq
MD5

0906d9dfbf69eb80618714011459007b
SHA1

7df0453dabf2800cd59d8bec4246a42292dbf786
SHA256

9830a1ef06408430b61a7823850572656b852c0bb184bccf14f552046fa4b5f9
SHA512

c4fdb631d64549ec563bb5a4341050e3feea4605c6fa453f900b3f6c6c86d3c5847ab17e4d4505599148d5dc9054ed2c0e0ef768965b483a1906a12b396a09f9
SSDEEP

768:VK2Rg/Jot8nKtevOcCXyjiQ8PhmPUYh9GOHZ:kkVHCjiQkmbZ

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  0906d9dfbf69eb80618714011459007b
- Size
  
  143KB
- MD5
  
  0906d9dfbf69eb80618714011459007b
- SHA1
  
  7df0453dabf2800cd59d8bec4246a42292dbf786
- SHA256
  
  9830a1ef06408430b61a7823850572656b852c0bb184bccf14f552046fa4b5f9
- SHA512
  
  c4fdb631d64549ec563bb5a4341050e3feea4605c6fa453f900b3f6c6c86d3c5847ab17e4d4505599148d5dc9054ed2c0e0ef768965b483a1906a12b396a09f9
- SSDEEP
  
  768:VK2Rg/Jot8nKtevOcCXyjiQ8PhmPUYh9GOHZ:kkVHCjiQkmbZ
Score

10^/10

evasion persistence
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Disables use of System Restore points
  evasion
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Inhibit System Recovery

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence