b2e05fb30d4c6e38d0fbddfb28c20c62dfbf4951650f9c949cda18554bbd3d8a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a7481adbae4145d8df30e160d87d863
Size

228KB
Sample

240108-e8gjgabbdn
MD5

4a7481adbae4145d8df30e160d87d863
SHA1

be8eccf8a8c49db372c381de1518b2a3219be4fa
SHA256

b2e05fb30d4c6e38d0fbddfb28c20c62dfbf4951650f9c949cda18554bbd3d8a
SHA512

6a4a86de18eb54ce5c78f5b3d3f4a44904f06dba15d4bd84c234f223cbd0c67203c78f41efac6223d7f5a5b2fc7d2fca6600b2b6a15defc8d5e68551e588214a
SSDEEP

6144:Z2BucCKD+4cQMKYS00OJJv72yuDpBuwrG/TjrybPQjNcDe:Z2BudJ72yuDpBut/Tj2bPQjODe

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  4a7481adbae4145d8df30e160d87d863
- Size
  
  228KB
- MD5
  
  4a7481adbae4145d8df30e160d87d863
- SHA1
  
  be8eccf8a8c49db372c381de1518b2a3219be4fa
- SHA256
  
  b2e05fb30d4c6e38d0fbddfb28c20c62dfbf4951650f9c949cda18554bbd3d8a
- SHA512
  
  6a4a86de18eb54ce5c78f5b3d3f4a44904f06dba15d4bd84c234f223cbd0c67203c78f41efac6223d7f5a5b2fc7d2fca6600b2b6a15defc8d5e68551e588214a
- SSDEEP
  
  6144:Z2BucCKD+4cQMKYS00OJJv72yuDpBuwrG/TjrybPQjNcDe:Z2BudJ72yuDpBut/Tj2bPQjODe
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2