25d72641d7055d44479fd87048ef74015e6eaa9deb6b6f397402be8a2b582e3e | Triage

Sharing

General

Target

2c2e88dd8795e6732c2a84969f7c2e24
Size

260KB
Sample

231225-tn93lsdeeq
MD5

2c2e88dd8795e6732c2a84969f7c2e24
SHA1

72a4e95e54e5c504cf2ca7337f76224874dc7c4b
SHA256

25d72641d7055d44479fd87048ef74015e6eaa9deb6b6f397402be8a2b582e3e
SHA512

ad176a479cf0136f9558c9c2eb3a859d4204164875ae8c5ec3e87e2ae8c6328409552a1743eb453b991d1d737bdd61f1776bb8e6d3be0540cc0361fff4029813
SSDEEP

3072:2gfAlNXvh25n/kZoSUjMqXnpWAkpAmTSrMaIOYt/jo7LAtPhjjtZnfHFEoWBfGVg:2dSgTSrMaIl/jcLijfHFEHWzXvjT85R

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  2c2e88dd8795e6732c2a84969f7c2e24
- Size
  
  260KB
- MD5
  
  2c2e88dd8795e6732c2a84969f7c2e24
- SHA1
  
  72a4e95e54e5c504cf2ca7337f76224874dc7c4b
- SHA256
  
  25d72641d7055d44479fd87048ef74015e6eaa9deb6b6f397402be8a2b582e3e
- SHA512
  
  ad176a479cf0136f9558c9c2eb3a859d4204164875ae8c5ec3e87e2ae8c6328409552a1743eb453b991d1d737bdd61f1776bb8e6d3be0540cc0361fff4029813
- SSDEEP
  
  3072:2gfAlNXvh25n/kZoSUjMqXnpWAkpAmTSrMaIOYt/jo7LAtPhjjtZnfHFEoWBfGVg:2dSgTSrMaIl/jcLijfHFEHWzXvjT85R
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2