05a5179ca58e77de03f5bf78dea0eb43a02ae9dd8afa15723df9cdf8b635e232 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09e883c1acd0f91b0d8332cd32afa08e
Size

252KB
Sample

231224-wjdjysebf2
MD5

09e883c1acd0f91b0d8332cd32afa08e
SHA1

b28a1ffe282e27c69a4e58ba6fa1da2fa9451169
SHA256

05a5179ca58e77de03f5bf78dea0eb43a02ae9dd8afa15723df9cdf8b635e232
SHA512

a630dd3f6e149f3a9c568de36822bc0cb960fd5fba4f834c35c35c28c5ebb538cebfd67049deee8c936721ec1c9ab5bead27fa3081cf774e25b440083e15b210
SSDEEP

6144:ZgI7CGWUsbNZeoqRAvFPpWlyfeWgdx1XxcNoX+poNd8m3RZWuAzgGZ:ZHWUsbbeoqRAFpWlyfeWgdx1Xxq4+poq

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  09e883c1acd0f91b0d8332cd32afa08e
- Size
  
  252KB
- MD5
  
  09e883c1acd0f91b0d8332cd32afa08e
- SHA1
  
  b28a1ffe282e27c69a4e58ba6fa1da2fa9451169
- SHA256
  
  05a5179ca58e77de03f5bf78dea0eb43a02ae9dd8afa15723df9cdf8b635e232
- SHA512
  
  a630dd3f6e149f3a9c568de36822bc0cb960fd5fba4f834c35c35c28c5ebb538cebfd67049deee8c936721ec1c9ab5bead27fa3081cf774e25b440083e15b210
- SSDEEP
  
  6144:ZgI7CGWUsbNZeoqRAvFPpWlyfeWgdx1XxcNoX+poNd8m3RZWuAzgGZ:ZHWUsbbeoqRAFpWlyfeWgdx1Xxq4+poq
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence