3a1844959cecbc1ea873ba533cadffe609c44fd5d573a3b342204cfdaf7eb664 | Triage

Sharing

General

Target

5b7876a89a0b0992b831d703c779b128
Size

312KB
Sample

231226-hxjfgaacbm
MD5

5b7876a89a0b0992b831d703c779b128
SHA1

ba4f633f961310f07af663e7ec39822710ac9960
SHA256

3a1844959cecbc1ea873ba533cadffe609c44fd5d573a3b342204cfdaf7eb664
SHA512

96d63c0c977e94d0078c4a02ae2d02eacd62425fb6e741931463e89ec258dc3dbe4148f6ab12f4c77fd48e233356fc6680f24b7c70848cbf4b69d49eba9688de
SSDEEP

6144:dC7tRvTlIpr1f+XqO5aOmSGFDbeOjLPmUPgn:+thTlIB1f+55SpNPmU4n

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  5b7876a89a0b0992b831d703c779b128
- Size
  
  312KB
- MD5
  
  5b7876a89a0b0992b831d703c779b128
- SHA1
  
  ba4f633f961310f07af663e7ec39822710ac9960
- SHA256
  
  3a1844959cecbc1ea873ba533cadffe609c44fd5d573a3b342204cfdaf7eb664
- SHA512
  
  96d63c0c977e94d0078c4a02ae2d02eacd62425fb6e741931463e89ec258dc3dbe4148f6ab12f4c77fd48e233356fc6680f24b7c70848cbf4b69d49eba9688de
- SSDEEP
  
  6144:dC7tRvTlIpr1f+XqO5aOmSGFDbeOjLPmUPgn:+thTlIB1f+55SpNPmU4n
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2