53e4de72efc8a21b4bb37e0aed355b3e3b2814f20c0e51b43fd2a308c0880cd9 | Triage

Sharing

General

Target

268496c362c87a5116a64123fade4476
Size

160KB
Sample

231225-r3t9labdgn
MD5

268496c362c87a5116a64123fade4476
SHA1

59f27e1cc92cee8001467ff79263567d53f05312
SHA256

53e4de72efc8a21b4bb37e0aed355b3e3b2814f20c0e51b43fd2a308c0880cd9
SHA512

0b58d224fb02e5657c6512ef2b019c4415d072347305974ee5a03fce3baf5b01c676147779f746e6eac6a04f0684036c43610cf965131c449685d2bd6ad433b5
SSDEEP

3072:QGzsrBjoe5g+GwJs8K9YUoIrJaRuSZ/JlQPj/PYv2wM0A2vmkHgHAGFAhl4oQZir:QGwrQP9YErMRuSZ/JlQLHYv2PkzGAMAv

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  268496c362c87a5116a64123fade4476
- Size
  
  160KB
- MD5
  
  268496c362c87a5116a64123fade4476
- SHA1
  
  59f27e1cc92cee8001467ff79263567d53f05312
- SHA256
  
  53e4de72efc8a21b4bb37e0aed355b3e3b2814f20c0e51b43fd2a308c0880cd9
- SHA512
  
  0b58d224fb02e5657c6512ef2b019c4415d072347305974ee5a03fce3baf5b01c676147779f746e6eac6a04f0684036c43610cf965131c449685d2bd6ad433b5
- SSDEEP
  
  3072:QGzsrBjoe5g+GwJs8K9YUoIrJaRuSZ/JlQPj/PYv2wM0A2vmkHgHAGFAhl4oQZir:QGwrQP9YErMRuSZ/JlQLHYv2PkzGAMAv
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2