40e0401da7d4df2ccaab7104ea2fcd4f8170203b47024e37b6d0d21c819ebc9e | Triage

Sharing

General

Target

40e0401da7d4df2ccaab7104ea2fcd4f8170203b47024e37b6d0d21c819ebc9e
Size

276KB
Sample

240319-gfq9baca9z
MD5

28e73adf02ebc3e9acdb20c3bfc704f0
SHA1

0090d09a436e94f54b44f44ed14681037426e021
SHA256

40e0401da7d4df2ccaab7104ea2fcd4f8170203b47024e37b6d0d21c819ebc9e
SHA512

77f1170133c827cd3869c45c41ea7c6c8ece3b480237bc294b5978f766d08a9b9b468f920cb8d2a8099a6ede6bb754dc42313868b287f865a6141f807935bbc5
SSDEEP

6144:K5XavQHcZQ2hqU+6ONGn0BbjvwC1SL3HAijW46BqU:K5XavmcZQ2hqU+VNGn0RjvwC1SxjW46X

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  40e0401da7d4df2ccaab7104ea2fcd4f8170203b47024e37b6d0d21c819ebc9e
- Size
  
  276KB
- MD5
  
  28e73adf02ebc3e9acdb20c3bfc704f0
- SHA1
  
  0090d09a436e94f54b44f44ed14681037426e021
- SHA256
  
  40e0401da7d4df2ccaab7104ea2fcd4f8170203b47024e37b6d0d21c819ebc9e
- SHA512
  
  77f1170133c827cd3869c45c41ea7c6c8ece3b480237bc294b5978f766d08a9b9b468f920cb8d2a8099a6ede6bb754dc42313868b287f865a6141f807935bbc5
- SSDEEP
  
  6144:K5XavQHcZQ2hqU+6ONGn0BbjvwC1SL3HAijW46BqU:K5XavmcZQ2hqU+VNGn0RjvwC1SxjW46X
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2