abf9d15bdb0be1ca757991160286bfa302a55c964930878d7cdeba77d15d2918 | Triage

Sharing

General

Target

f601666ae809e043bdb7da8768dc73ca
Size

240KB
Sample

231228-y9sgxaegd5
MD5

f601666ae809e043bdb7da8768dc73ca
SHA1

4727f659fdafd7edbe2b5ae3426e7274d0d71f9c
SHA256

abf9d15bdb0be1ca757991160286bfa302a55c964930878d7cdeba77d15d2918
SHA512

c9bbd142123ff7d3b82ffe29c3400abad41b3bab01a1333197f2a404ed635bf33a9a5842fcf1034888dcd3189907e90fccef2ed4a1d493fe5739ba0be6e49cd3
SSDEEP

3072:akNFT8j6VlpvBd90i/SmWKLi7CjFSivnfu3fbMdozt5cz+G1:ay0UGKGkFRKfeoztOH

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  f601666ae809e043bdb7da8768dc73ca
- Size
  
  240KB
- MD5
  
  f601666ae809e043bdb7da8768dc73ca
- SHA1
  
  4727f659fdafd7edbe2b5ae3426e7274d0d71f9c
- SHA256
  
  abf9d15bdb0be1ca757991160286bfa302a55c964930878d7cdeba77d15d2918
- SHA512
  
  c9bbd142123ff7d3b82ffe29c3400abad41b3bab01a1333197f2a404ed635bf33a9a5842fcf1034888dcd3189907e90fccef2ed4a1d493fe5739ba0be6e49cd3
- SSDEEP
  
  3072:akNFT8j6VlpvBd90i/SmWKLi7CjFSivnfu3fbMdozt5cz+G1:ay0UGKGkFRKfeoztOH
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2