1f3f72219b7fd0a7a240af52841a7beb53cac83004b7f0c9fcdff9fd462252d5

Resubmissions

11-02-2024 13:47

240211-q3qqqsag66 7

11-02-2024 13:45

240211-q2vnasag58 7

Sharing

Copy URL

Twitter E-mail

General

Target

PrismLauncher-Windows-MSVC-8.0.zip
Size

17.4MB
Sample

240211-q3qqqsag66
MD5

14ed1ead1c66abf29a39aa900f395995
SHA1

5773520d44e0a5453fbcd08df6f06cb1a8bb075e
SHA256

1f3f72219b7fd0a7a240af52841a7beb53cac83004b7f0c9fcdff9fd462252d5
SHA512

e4c84ddfc3f560d707a52c4f56629ee99bdaea2bdfc1635a426d47cad22ccfd949ed10d0fe6d1a38efe2ad2c5f1e694b9dfdd7298e7c905f809c4d3661e64260
SSDEEP

393216:EvFc5ME7XAC12e+OeLes7VQMb50x3dlJQMKUpacjKnGrF:Ev/E7wlO2VQqjQLiGrF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  PrismLauncher-Windows-MSVC-8.0.zip
- Size
  
  17.4MB
- MD5
  
  14ed1ead1c66abf29a39aa900f395995
- SHA1
  
  5773520d44e0a5453fbcd08df6f06cb1a8bb075e
- SHA256
  
  1f3f72219b7fd0a7a240af52841a7beb53cac83004b7f0c9fcdff9fd462252d5
- SHA512
  
  e4c84ddfc3f560d707a52c4f56629ee99bdaea2bdfc1635a426d47cad22ccfd949ed10d0fe6d1a38efe2ad2c5f1e694b9dfdd7298e7c905f809c4d3661e64260
- SSDEEP
  
  393216:EvFc5ME7XAC12e+OeLes7VQMb50x3dlJQMKUpacjKnGrF:Ev/E7wlO2VQqjQLiGrF
Score

1^/10
behavioral1
- Target
  
  Qt6Core.dll
- Size
  
  6.0MB
- MD5
  
  46c0a1684b64081f45070d7c41b501c4
- SHA1
  
  7fe0ddde9b30c01641515126a16b6d06988aa144
- SHA256
  
  a230faeeb2bcff6e80b7a8fcfb19350a076cc2ed0fa190e16865bfa0c7e9214f
- SHA512
  
  8d29f0b15955c73e9bbb026b5b96d196a219bdd33f9579fc3d5ebc50f6757621477000b0908fe3a191ac830d7c76750db55e2d871284c5060b7e626addd340bb
- SSDEEP
  
  98304:3t7KQI1hPYyEeKFdu9CwJsv6t+1j/3WVF:3sQIkoKFdu9CwJsv6t+5/3Wb
Score

1^/10
behavioral2
- Target
  
  Qt6Core5Compat.dll
- Size
  
  851KB
- MD5
  
  8437fabf510fb31e319500774f55ce10
- SHA1
  
  677d2926708f3cf691aa523ccdac0ee6f0900d9f
- SHA256
  
  bf920ef0eaa78e7f7cb4b9d1499ada88a4180ee0df2477a39ebfde2cd14f2b56
- SHA512
  
  824e737785a6ef5e5a66be4f55f8e304e0ad41330117bb4d22d89732ba6b8e038ee993a6a6dd1aa160f02a056b83b528c47a9f4fe37b79f437c9101972eafaf9
- SSDEEP
  
  12288:PBwoIi67UbEUKxnNdTqQ7qFlICNPGE/4717VKITBDPzHkSUGGIffbfJIp1bEL:or7UbEUKxHpqQCNG7VbDPTRnfJIHbM
Score

1^/10
behavioral3
- Target
  
  Qt6Gui.dll
- Size
  
  8.5MB
- MD5
  
  3b76150f68eee497f84f3cec0c1fbd82
- SHA1
  
  73488761aad3104f1f2ff7d67318f3d70c783c5a
- SHA256
  
  42dfcd4c5fea70cd7cac2442529ab57ae09d5ad6da38cdd2cefd932f6eb5c66d
- SHA512
  
  2b4915ad7edd83360d1071794e9cd503d59da810fcc6cab0652e799c989f8965aa4bd1bf96ac12307582eacb83b3c1641e8d9ce97ed1b8f3da741b2453f1ae1e
- SSDEEP
  
  98304:6aX/98BvOx0NRo91updLKZJ/nZcYBUfQCiOR5Q0:6aulNRM1upduZJ/ZcYsQCbR5p
Score

1^/10
behavioral4
- Target
  
  Qt6Network.dll
- Size
  
  1.4MB
- MD5
  
  7859ab5090780d2d8a3bd67d9594d9d6
- SHA1
  
  908dcb1c397d6172866d040d14e28bdcda99df30
- SHA256
  
  b7839d313a86d413c67c3f57d3adc0d277345d6c9d04b3364e3771a7bd1c8c55
- SHA512
  
  4456c2f780f8d080963855f8775e81fd3de12c17e6d8cc928381be75e8e7b32f152484f5893cbaeaaf2995b671c99fddcb03af2f09a68e5ec4eb0fcf9b5509c1
- SSDEEP
  
  24576:ByPs85QwVlgkdHWhxHLwpHdgc53a50SKGcCVYY1:BaR5tVLMhkHHS7cWl
Score

1^/10
behavioral5
- Target
  
  Qt6Svg.dll
- Size
  
  374KB
- MD5
  
  365ae83f71887535ab064674277e04e3
- SHA1
  
  9d50aba7d490425d7e5507d47175de3ce354af85
- SHA256
  
  4de1a81c070c33a3e48772d7003e3a9454d69951fc4f5da8132ed7a03c84597d
- SHA512
  
  d544bb66a9426e7a6577a8041c844d19ee6aeb9bce11a073e7bd693d68a3e12fc8e24978cfc6cd5f3ffdf30265b62397f42265f71853a2f23d593cfb5829bf7c
- SSDEEP
  
  6144:C0tc98PpG5czgcVjDA4dqBbS0uJuKTZJiXI10+fTnmwk4s/Eo:C0Xn9VHbA+0SuK7vs/Eo
Score

1^/10
behavioral6
- Target
  
  Qt6Widgets.dll
- Size
  
  6.2MB
- MD5
  
  373e8fc6044b19fe2857b71ebf83a3a4
- SHA1
  
  af15b5da48d07c0883170a6089976a29b1d427a9
- SHA256
  
  0f040d7f14e1a6cec10b80d9e90065c2e3b5f8f4aab7a45244dd7327a1bf1c20
- SHA512
  
  9f4a93b946d26118c313719e753a0bdc78bf075a072b74d221dcdf31163f60b92521a8bcd4f5287deea885f7cbfbfb06ae52c60fcf1e7a61ab0f2e00c2a793d3
- SSDEEP
  
  98304:kMh8shJ/KQWlIfwiaptySLjwY4qTxSEuGnEcE:nh8shJ/KQCIoXptySLjwqTcBGA
Score

1^/10
behavioral7
- Target
  
  Qt6Xml.dll
- Size
  
  152KB
- MD5
  
  6a20c7e176d042d849f8a8420e56dd1e
- SHA1
  
  569be8e19bd54c10846ade6f1a3e1c00bc033aad
- SHA256
  
  805c5c0bbcd384428c77719b756c90f901832c45769ee1cd6f39964baace86ad
- SHA512
  
  b0c0b73069ea4b14e4d43548b0ce4d0fff6092a96fa405f83b09ea3f0eecca372f57a4b523dc39b01e12e1815cb35f1d1216ecba7c6d441da76d3460e341bc0c
- SSDEEP
  
  3072:aJNQflr/dqTiGoFTMI3SUkazKvt8AtK4E/:6uDGsFTMlaOvE4E/
Score

1^/10
behavioral8
- Target
  
  iconengines/qsvgicon.dll
- Size
  
  69KB
- MD5
  
  88b03988ca27c2e3cea7d33d699eb17a
- SHA1
  
  f4c71b9e6543ef9a7b183fdec888d7b8a11fc7e7
- SHA256
  
  35e9c2f0e54aed7493e85c8a10e0a620585d04821c6dbe82b9fe48be19ff28a1
- SHA512
  
  2fd59ff2161e68351e59ce80b53c54b525981738c8d80e4af047ad3c5acd9ecf1e281ae812abcf9999ffb2c750c7f09dd98c0b5dd343905ec3af615337e1fb41
- SSDEEP
  
  1536:UzibTbDQn6wcma+mHKT6IQubV5awBeBx3IPIT2k/6JRT9WvsgKxngeLEHo:UObTzq6IQubV5awBeBx3IPITF6JRklKH
Score

1^/10
behavioral9
- Target
  
  imageformats/qgif.dll
- Size
  
  47KB
- MD5
  
  57e51ea5072660adb8874e8cafc62a37
- SHA1
  
  97cc9eaac24ff74c9bf2cd83ef9bec75184578f6
- SHA256
  
  b0d133e6ff9b8c14fd5857189d63abc8b75d291c56d56becc50b43591e4867a8
- SHA512
  
  74c3fbe094da578830a524c669edc7edab0bc15cf7e352f819bd35b0a47cf873d714daeaf505c0b1b45e926d85837a0129da131535140f6f8cff9f6faa4e3b13
- SSDEEP
  
  768:BONXrIbWKNNy/Qq0rvEx2eVGabeUYisZXiRS/8QgKxnVbGYJlBN0EHdFH:gJrIb9KQOVGnFisZyRS0QgKxnge8EHdB
Score

1^/10
behavioral10
- Target
  
  imageformats/qicns.dll
- Size
  
  55KB
- MD5
  
  44dd92a8f16ad189bb44ce8c392e04a2
- SHA1
  
  4846fb107d58c62294891d45ecaa1630aa587545
- SHA256
  
  b8b59ed0443548a45925375699e5d1726bed0c49b5a007d902be7d0f10b20e15
- SHA512
  
  5991487d2d566456ef1316df3f74653406fef7a8f9fa740f3cee11f5612ea59c2313b56c12da21d891088a8cb702af1bda62f0bf055e5b42ba722949d4513649
- SSDEEP
  
  1536:gjQEXCukdHgnHhuSOJCXGXH8snEvTHFgKxnge7EH3SpK:gsEqgPOJAsnEvTHSKXEcK
Score

1^/10
behavioral11
- Target
  
  imageformats/qico.dll
- Size
  
  46KB
- MD5
  
  5c455c348e79fce7d4f1100a5c9e180b
- SHA1
  
  f76fa09b8b6d3c0847181f8a89a89164c2c79ad4
- SHA256
  
  b656af82f086310502673cff15a67400f806acdb820248d19e08d3e4919d90f9
- SHA512
  
  15833c5a119ff84dd0a5447bc29c8a5a9973464ba456d50392a4c79ffe420e857c6ec65aa1b15df07c412aeb47967653adb54fdb3341de076cc9dd31811c8be4
- SSDEEP
  
  768:0qehXuIBpyp7dJ/P891tUtAeuNwJDPgKxnVbGYJlkN0EHV:0LDBp87dJHw1tUt7uNwJDPgKxngeNEHV
Score

1^/10
behavioral12
- Target
  
  imageformats/qjpeg.dll
- Size
  
  616KB
- MD5
  
  dbad209058a24a26b4e539d65b0f2388
- SHA1
  
  51d939dfa0b22581acb502c9d523c5d646ee4044
- SHA256
  
  e98fa286c08ac33b5b1a55367bf99cef820859e2aaaa009d30d83c727defdbc8
- SHA512
  
  8c9c18504d768881b25fc1cf6b76661124986cb282b7bf056b85c1178294b0b95ab830928b713f460ff53bd2f1ef95d1af2c2fdbbdc2774ed6c0fe48c8897a34
- SSDEEP
  
  6144:6fm8PgD/WV6AGx3bEHXmBBc9TS8zCVwwty/cnHh6ZQU7kTSibKP1//0a9YaA11Ch:U/Glb2OuQU0SVWPDNXzxRER
Score

1^/10
behavioral13
- Target
  
  imageformats/qsvg.dll
- Size
  
  39KB
- MD5
  
  d12ed3e7a46b9c2e881c0bd210d2fb1e
- SHA1
  
  6f1ed179e4c3578c8c363a62ecda5e53485850f3
- SHA256
  
  4d309228eeb7de155df1508fff39b9d4f360fa27152dcd8482280a64e397e618
- SHA512
  
  7a459de7b686f351b33b84bc6e7f1ef3bb983140d9734233914fe9ff9dfac64cee659959601712fcfa564648112f0e0364d3c8c7ab5f126a7eccae04a715bbb3
- SSDEEP
  
  768:+Ez05YLHnGWRoB3zKv35wAU7kQgKxnVbGYJlJrN0EHMl:kYLHnGWWtKvJwAUQQgKxngeAEHMl
Score

1^/10
behavioral14
- Target
  
  imageformats/qwbmp.dll
- Size
  
  37KB
- MD5
  
  f0aa1d8ad1b50c89ec5c5f1d7ca8d720
- SHA1
  
  f441bd65a1a02031830a85cb8822b4c9cdef7777
- SHA256
  
  d768b8d0cc22b8182c2f24406ff6b0bc5d4ee5dc5b9edfe16d2f1e8bd3fabb70
- SHA512
  
  2893597cd5299073f8da108f345423bc75de3299d70fa12485073523f2f759e166c9181405d5c90fd8fe7290012965b06c851d5452db37aa1e25f3a167536318
- SSDEEP
  
  768:vtuZOmR3PYhX2AE7P8KsOrH3vgKxnVbGYJlyN0EHDHm3:KOGPUX2AE7P8KsOrH3vgKxnge3EHDHm3
Score

1^/10
behavioral15
- Target
  
  imageformats/qwebp.dll
- Size
  
  527KB
- MD5
  
  b1afb6165e135551b7494e704bbb60d3
- SHA1
  
  7c97798a5b91cb8b3c7af8cefbce9fb86f25baf0
- SHA256
  
  e112b3c259ce143831a3ea9c21bbb7634ce46fa64f923801f4387c88fb3cc70c
- SHA512
  
  d2b04b80f71b5d3132cd7c34643734b12f8a45791bae17f40cd7f0052bab69cd724fb2c53c634e9057d01c14a52c6c8e32628acdd4e47b1d8b80e876442229a9
- SSDEEP
  
  12288:6zaweeWDsi1cALrLrLrLwc/EMOTmUZxx2EhQoDR3YEI:SaZpqALrLrLrLwc/EMOTmex2E7Y5
Score

1^/10
behavioral16
- Target
  
  jars/JavaCheck.jar
- Size
  
  1KB
- MD5
  
  2b96e0a98d55af7d8b552974528bcb28
- SHA1
  
  47bbbaef4bbfde66db7d4c58428e43fac950f11e
- SHA256
  
  6b350b222366434d20be527ca7a27c7a8b8f7692ae7d2fbfec4f120e5894022a
- SHA512
  
  5fbd76d7f281e2557092e073eee6058aaee1a9d25836cc20b233b819f511c366b6d4bae3a98c18a2a04726cb0414be9a65a11cdf0d529a8998c77166b36b3c3a
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral17
- Target
  
  jars/NewLaunch.jar
- Size
  
  12KB
- MD5
  
  13cd62601070f0770d8714b2d5a5f79f
- SHA1
  
  6e9aecc18761fa3056a256e7484b05b1919380a0
- SHA256
  
  4e84206b1bbd31ffcb484b6dde50830263dc9dc3adf6d9a522fe495b423c839e
- SHA512
  
  d9b84d2fe49ed9fbc9bcc7c00098442b083fdd0455535df3e50f9eb5b2fd051b20c9a5f03ceed6c31d18ef876c4accc084a8bbe673d23d9eb535dccf69f7abea
- SSDEEP
  
  192:IHhrTmv5ANCSLz4EqenQCRc31KqlwPnlTeqV1ZcXRiXyhMeugBeGnhCV2Kn:kh1NCSLxqePVFea1ZYBRBeGUn
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral18
- Target
  
  jars/NewLaunchLegacy.jar
- Size
  
  22KB
- MD5
  
  6fad0dde8d270e0d6c1094725d5390dd
- SHA1
  
  4bd9f28875ec8a597b0a592d2570a17057ff769c
- SHA256
  
  c05baa4bde0f1444925ee1502d1080dcb8dd1c1124b865d3e89254e4dfb138df
- SHA512
  
  b9e4df98406d40a95d4817baa479452272bef39644c4d3eea0b497a7d8f51a5a3704a5e772e735795f3512daa60c51f0d1784764d6690b08ae57fcf7aba27b21
- SSDEEP
  
  384:63VLTZDtUfYdONOlSEagft41ScASXFTb5D/8SkDiWny8:63VdxlRt4EkXFTFD/8Skvny8
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral19
- Target
  
  manifest.txt
- Size
  
  647B
- MD5
  
  adb87e023d5d60d7f23a92e682f8b4db
- SHA1
  
  e70b172ce7692548b0b317f64042fd9df9a90449
- SHA256
  
  4f621c8c47c2cc8573d0c2cb1ce144d758646e505c064436529d67f31985650b
- SHA512
  
  5603001234e103b90a882ea53f538535e47f8451d0e05462c62d5f66e74dcb0e125dbb468d0473e485d451e245fafdacb2d335719f191cd986dc698d1feda057
Score

1^/10
behavioral20
- Target
  
  platforms/qdirect2d.dll
- Size
  
  940KB
- MD5
  
  6b84eedc5462593c1fb42405b9e2f593
- SHA1
  
  d880ab5ec6d1cb804c0747c7a02e642d3580c17b
- SHA256
  
  a9033512312357c99974bd91242df33482c07e049536a8e7c24fb6c3d070de25
- SHA512
  
  e0668fb53c6e1add8d71e28e61ac5f77d9167c6ad564aeef494982cbeee661b9c40adcfd22d5810f8ae77590518b0f0867abca8b4340f05acede46d7554bd5de
- SSDEEP
  
  24576:DrP2DAjZuG5ihNojDT0ByZtzL3eJz5sdGr78E:DrPm0ZuG5ihNWDTGWeJz5U2
Score

1^/10
behavioral21
- Target
  
  platforms/qwindows.dll
- Size
  
  870KB
- MD5
  
  ab99c1e6453c1da2f9c9ff9bcf29d01a
- SHA1
  
  31183561d4f418b007ed173c5874df3a4fa2ea4a
- SHA256
  
  0daee37658c29afc0702703bc477fdecb8091197c0c9c6c89d3672636cb0edbb
- SHA512
  
  8245509501166148c4e43ac79075601545af65f7c98f9560600648fda97a989dcdf94722590ba802a1eb2a62f699eecba1bf11a2587a15d24419ff91c56ae1d2
- SSDEEP
  
  12288:DUTmAxBeLQtH7bf4eTE5pSfzG0NiF9gToK8h8aUE2:DUTmAxcLQtH7bf4eTEubGciF9gEfUt
Score

1^/10
behavioral22
- Target
  
  prismlauncher.exe
- Size
  
  9.7MB
- MD5
  
  f76f36aec1c7701f0f528dd87e5a2df8
- SHA1
  
  1eb2c7d88b1898184f813d47cb60fe6553682307
- SHA256
  
  8c79a4bf9229e4f11696a3196463b9830f66e9cac22dc9eb39eda1cb062604dc
- SHA512
  
  c2c6ded06c89a6722e4f4a8d00819b1b0ef8422890d6b793354bd98103108d177dc41327a4fe4d77f021853f5c5a02ab3a1ca2f97e3ddc55b60ae0a183a7ff45
- SSDEEP
  
  98304:8yka33OsX9cGWp5ozIHDno6TR3UNxOK6zytxwU:8Lchi06KxpQU
Score

7^/10

discovery
- Modifies file permissions
  discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral23
- Target
  
  prismlauncher_filelink.exe
- Size
  
  104KB
- MD5
  
  3646eebed2f131864ea640f039bc5d68
- SHA1
  
  31f64f22fdfeb6ccc61fca331093b4367915648a
- SHA256
  
  1ab02e3f779fee85f185903cfcef09eb8e227cdddd0e8d5fc0d1578d94c19340
- SHA512
  
  16f2072c4c0f1200dd09894a7463fb4c954347b82f8c364967eb7f07ff9897ade7f8b46feea09baee70c36858fe2489553dd3166ae28e807649c0852235585e1
- SSDEEP
  
  1536:Sc3L4xXo2XuLa+RRxaSdXivrKzKoNnokzWds3zOxOPGdTJrW6sS9v9kVNtVzxr:Shx7v+RRgS9C8KoNnJes3xYTluVJ
Score

1^/10
behavioral24
- Target
  
  prismlauncher_updater.exe
- Size
  
  669KB
- MD5
  
  d5d1fe54bf418a958302d5a072255b8c
- SHA1
  
  84580d582b69f04e9d05d45a60321b779338a12b
- SHA256
  
  4388de81117fa7d0bc2ad6b384649789f8a58c077ee90c798da48264e19268c1
- SHA512
  
  e2a12d6e311805f4423ef5923adc7d63cb21de20096190d8601e68d215ef1bba45ba7088d81c25caffa66d836fc1d1318b158fe0fe1adc95b0e9b4bf84a379ac
- SSDEEP
  
  12288:BPFmzQAHFUmv0Y5a6/KR2C8ICJ6bt8c7pETm7DctQu:B9mHHFUmv552R2HI8pmvncSu
Score

5^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral25
- Target
  
  qt.conf
- Size
  
  1B
- MD5
  
  7215ee9c7d9dc229d2921a40e899ec5f
- SHA1
  
  b858cb282617fb0956d960215c8e84d1ccf909c6
- SHA256
  
  36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
- SHA512
  
  f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768
Score

3^/10
behavioral26
- Target
  
  qtlogging.ini
- Size
  
  509B
- MD5
  
  58967a7fcc8cd9d2bdb9b0fc24eed94d
- SHA1
  
  b09f4ed1fe53850307cf8cb8cd2767524c26335b
- SHA256
  
  ba15aee260e7ca1d48016546bab52fe30c3da264356b629739c125cd4eb3c700
- SHA512
  
  5d44670d283b8a88892fd8def2fd2f2f9222d5115b25cc4b9e2b04a7c5f004930dc0b5e2d11ae128ab844f826ba079a0f93e17d5428355bdb4d21a04ee58055a
Score

1^/10
behavioral27
- Target
  
  styles/qwindowsvistastyle.dll
- Size
  
  140KB
- MD5
  
  136687f095ebbafeb28e4ec876efa0f1
- SHA1
  
  5a2050135bfecb2d7f2109d0aea89f29c3f24d42
- SHA256
  
  acf625d41d1a37aac76fd7b26f8d33ae6a67bc761351c8fb56f0c8a607c4770d
- SHA512
  
  b1b8c7397e9b589083276b1b68176b4965cc31f2e594a8005d1e4611e7df90b94a6f3febba822f9842ed5bf6a7b4f5acf087bdf5a0bd237ef9535a2cd269e1c7
- SSDEEP
  
  3072:4WG/SMGP7tKZqz7yzwFYo2mpH4UwzjBjhKCRgFaZU3pzOCZxKNEq:4WG/PkIEmzccUcBjhnRg8ZU3pzqNEq
Score

1^/10
behavioral28
- Target
  
  tls/qschannelbackend.dll
- Size
  
  228KB
- MD5
  
  6fc2cac586b67bbbc6785d92ec35dcfc
- SHA1
  
  7966459f8647183332fb854e85f3ccf182769c1d
- SHA256
  
  e7727fe4a6f12768b1de8a99cf9d4d8342843c819ff5a6b71271059416178a74
- SHA512
  
  08877c165218d7070e3ec14cb94eb96b31f42645fd752c1128d3c7da6f5ba76fc8f7dc6064568293593a76fd5004ac79bd738896dff8144936cd3aa7bdf891e9
- SSDEEP
  
  6144:z24HX+sIAuj+yrL29gfnKan/iwPriG/lDAg4zFEyPeE0qxRacP126EY:zuTL29gfnKan/iwPriG/lDAg4zFEyPHj
Score

1^/10
behavioral29

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

T1222

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Modifies file permissions

Modifies file permissions

Modifies file permissions

Modifies file permissions

Checks computer location settings

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29