fd09ec7e01c56d2298fec4200a92d4e8e69882d8cba2058472862531697e2358 | Triage

Sharing

General

Target

fd09ec7e01c56d2298fec4200a92d4e8e69882d8cba2058472862531697e2358
Size

206KB
Sample

240515-f1axdsba6v
MD5

1a065fde6b8b4dbe6eab9c1195d4ee1a
SHA1

77fe09ea651ce266809a4108c238a8fb7cf1986a
SHA256

fd09ec7e01c56d2298fec4200a92d4e8e69882d8cba2058472862531697e2358
SHA512

ce5c448d501407b95ce6cbd9a5e5469f681d6cae4b41e3b1752112a9c95bf2e1b88ee91e406b6b3e01cc3b19b84bcce5b729d20813305fbdf944cdc6d3aeee9d
SSDEEP

1536:/fsEqouTRcG/Mzvgf7xEuvnXNTRdUzwTekUOisZ1yDDajtXbJdX:/VqoCl/YgjxEufVU0TbTyDDalbX

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  fd09ec7e01c56d2298fec4200a92d4e8e69882d8cba2058472862531697e2358
- Size
  
  206KB
- MD5
  
  1a065fde6b8b4dbe6eab9c1195d4ee1a
- SHA1
  
  77fe09ea651ce266809a4108c238a8fb7cf1986a
- SHA256
  
  fd09ec7e01c56d2298fec4200a92d4e8e69882d8cba2058472862531697e2358
- SHA512
  
  ce5c448d501407b95ce6cbd9a5e5469f681d6cae4b41e3b1752112a9c95bf2e1b88ee91e406b6b3e01cc3b19b84bcce5b729d20813305fbdf944cdc6d3aeee9d
- SSDEEP
  
  1536:/fsEqouTRcG/Mzvgf7xEuvnXNTRdUzwTekUOisZ1yDDajtXbJdX:/VqoCl/YgjxEufVU0TbTyDDalbX
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence