0259fedbd9c3c260c01ad6bd9be17dd2e7902a4c35d857b6378a8ddeab91db80 | Triage

Sharing

General

Target

4440a230e8ca193cc3cf2f4d0b535358
Size

46KB
Sample

240105-x6qngahbhq
MD5

4440a230e8ca193cc3cf2f4d0b535358
SHA1

df64278b8498fb4020b99774260d2b526da051d3
SHA256

0259fedbd9c3c260c01ad6bd9be17dd2e7902a4c35d857b6378a8ddeab91db80
SHA512

c5347f037e32510293909538a15c70c2a17f3261ede313923acda35f149b0b410efc0cc2ede27ac8e6b3387cd50304657f3c3ef061036d19353435b423172935
SSDEEP

768:SMVvp3w/z5K2u2QeGooyw765XOMD+fYzYcNxHSS1zL1Jdh2zUoxMak8nRD6MzW+8:SMVvp3w/zATFPU5X3DvzJFSS1zL1Jdhv

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  4440a230e8ca193cc3cf2f4d0b535358
- Size
  
  46KB
- MD5
  
  4440a230e8ca193cc3cf2f4d0b535358
- SHA1
  
  df64278b8498fb4020b99774260d2b526da051d3
- SHA256
  
  0259fedbd9c3c260c01ad6bd9be17dd2e7902a4c35d857b6378a8ddeab91db80
- SHA512
  
  c5347f037e32510293909538a15c70c2a17f3261ede313923acda35f149b0b410efc0cc2ede27ac8e6b3387cd50304657f3c3ef061036d19353435b423172935
- SSDEEP
  
  768:SMVvp3w/z5K2u2QeGooyw765XOMD+fYzYcNxHSS1zL1Jdh2zUoxMak8nRD6MzW+8:SMVvp3w/zATFPU5X3DvzJFSS1zL1Jdhv
Score

8^/10

evasion persistence
- Adds policy Run key to start application
  persistence
- Drops file in Drivers directory
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence