fa26c4168f6518c8c4169e170046652565718984f29b6cf78f38f993bbf043b6 | Triage

Sharing

General

Target

115ca675f0098d320aeeaca88e9b248c
Size

52KB
Sample

231230-hh8rtagfa4
MD5

115ca675f0098d320aeeaca88e9b248c
SHA1

c254ec13ab67c6c3b5fdbeee8151a1c5544e95b3
SHA256

fa26c4168f6518c8c4169e170046652565718984f29b6cf78f38f993bbf043b6
SHA512

c2fdff3229f61ba68eaa3417c5de6eefef2625c382d51dc38c624e936073bf03ca64a3bbed7ec9da2b3ecc84f4ee0723a2ff234e46e805d67117fa3dfa9cc75e
SSDEEP

768:Yl0RWNvjjZpolW1dmaW4KpQDxdjjmADoOEsxzWM6H8A7DOEAc:cAQbcy0Oc

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  115ca675f0098d320aeeaca88e9b248c
- Size
  
  52KB
- MD5
  
  115ca675f0098d320aeeaca88e9b248c
- SHA1
  
  c254ec13ab67c6c3b5fdbeee8151a1c5544e95b3
- SHA256
  
  fa26c4168f6518c8c4169e170046652565718984f29b6cf78f38f993bbf043b6
- SHA512
  
  c2fdff3229f61ba68eaa3417c5de6eefef2625c382d51dc38c624e936073bf03ca64a3bbed7ec9da2b3ecc84f4ee0723a2ff234e46e805d67117fa3dfa9cc75e
- SSDEEP
  
  768:Yl0RWNvjjZpolW1dmaW4KpQDxdjjmADoOEsxzWM6H8A7DOEAc:cAQbcy0Oc
Score

10^/10

evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Stops running service(s)
  evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Impair Defenses

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

behavioral2