80b7b2b69e3d467e83425496c26c1dbcade4106ceeb50284931aebf462b691b6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4556ee2acab87d30bc2d820d3c325c39
Size

140KB
Sample

240106-fkcfaahafq
MD5

4556ee2acab87d30bc2d820d3c325c39
SHA1

facf66ff8910a5d70c4988310fd116dbefba1233
SHA256

80b7b2b69e3d467e83425496c26c1dbcade4106ceeb50284931aebf462b691b6
SHA512

a1b159447813b277115acc8f0834c7b64920fb11a5bc9923160a6af8f547df3638899381671494946a82603c60763983905cd51d75e4586289dac48a3566a5c6
SSDEEP

3072:Ia9+O3vu3XuIcN6/xbccM3hEL8fyUha5fJixm9:IaR/uuIcNmLX8dhaRJixM

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  4556ee2acab87d30bc2d820d3c325c39
- Size
  
  140KB
- MD5
  
  4556ee2acab87d30bc2d820d3c325c39
- SHA1
  
  facf66ff8910a5d70c4988310fd116dbefba1233
- SHA256
  
  80b7b2b69e3d467e83425496c26c1dbcade4106ceeb50284931aebf462b691b6
- SHA512
  
  a1b159447813b277115acc8f0834c7b64920fb11a5bc9923160a6af8f547df3638899381671494946a82603c60763983905cd51d75e4586289dac48a3566a5c6
- SSDEEP
  
  3072:Ia9+O3vu3XuIcN6/xbccM3hEL8fyUha5fJixm9:IaR/uuIcNmLX8dhaRJixM
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2