a0a1660d66b4cf1c40006267b4eb3dcaafc19f7714ed1cd71fbcf51db25c17c3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Rufus_Setupx64.exe
Size

152.8MB
Sample

240417-htye8aaa3s
MD5

5cf2e80ac2a7f7fa24f74966d3ec904f
SHA1

dd6fedc84c0a23ab407a70c8923509927216620e
SHA256

a0a1660d66b4cf1c40006267b4eb3dcaafc19f7714ed1cd71fbcf51db25c17c3
SHA512

766e2e0431fdcfd0b596cca0059f263605a1415b75253a0518b82bdc2d3d30bf66b0694f83510346a89b37be0708f3111f063006f2e528fbd582a6e1111c820b
SSDEEP

3145728:R++iZtEjNRQ57R1E9cNj7vA9aeXJESUHpZBeUdle26BJpn3y:zige7nEyNHvCXGJZ3dVyfi

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  Rufus_Setupx64.exe
- Size
  
  152.8MB
- MD5
  
  5cf2e80ac2a7f7fa24f74966d3ec904f
- SHA1
  
  dd6fedc84c0a23ab407a70c8923509927216620e
- SHA256
  
  a0a1660d66b4cf1c40006267b4eb3dcaafc19f7714ed1cd71fbcf51db25c17c3
- SHA512
  
  766e2e0431fdcfd0b596cca0059f263605a1415b75253a0518b82bdc2d3d30bf66b0694f83510346a89b37be0708f3111f063006f2e528fbd582a6e1111c820b
- SSDEEP
  
  3145728:R++iZtEjNRQ57R1E9cNj7vA9aeXJESUHpZBeUdle26BJpn3y:zige7nEyNHvCXGJZ3dVyfi
Score

8^/10

evasion
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2