15f69b3b7720d59511b4b73a9a56045b5a6e8611c09181de5a157fd16542d6d5 | Triage

Sharing

General

Target

d664454b2f4aafefe4e8d79b34b319ae
Size

45KB
Sample

240319-r9jfnsef48
MD5

d664454b2f4aafefe4e8d79b34b319ae
SHA1

28e9283962506986ec9d2e6d3b85738e50e02979
SHA256

15f69b3b7720d59511b4b73a9a56045b5a6e8611c09181de5a157fd16542d6d5
SHA512

09ef21390529088275bfad0c9a633898ba544a097d0d1e7d774d58e9efda80d8764b776e038edede777ecb6681d58e5b66166473fe836ce3b921c46f0d4f8162
SSDEEP

768:tMVvp3w/SGIjuUb/0FD3SE4Y4cBRX6VX+Re5QH6DMnP6is0WMusig4s8HY:tMVvp3w/zMcFmEbREX+Rh6DM/s0fEIR

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  d664454b2f4aafefe4e8d79b34b319ae
- Size
  
  45KB
- MD5
  
  d664454b2f4aafefe4e8d79b34b319ae
- SHA1
  
  28e9283962506986ec9d2e6d3b85738e50e02979
- SHA256
  
  15f69b3b7720d59511b4b73a9a56045b5a6e8611c09181de5a157fd16542d6d5
- SHA512
  
  09ef21390529088275bfad0c9a633898ba544a097d0d1e7d774d58e9efda80d8764b776e038edede777ecb6681d58e5b66166473fe836ce3b921c46f0d4f8162
- SSDEEP
  
  768:tMVvp3w/SGIjuUb/0FD3SE4Y4cBRX6VX+Re5QH6DMnP6is0WMusig4s8HY:tMVvp3w/zMcFmEbREX+Rh6DM/s0fEIR
Score

8^/10

evasion persistence
- Adds policy Run key to start application
  persistence
- Drops file in Drivers directory
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence