21f1c3648ddd79d3593cbbe8a1f0bf66e0a3480cf84b904d1a2b66340aa8f980 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21f1c3648ddd79d3593cbbe8a1f0bf66e0a3480cf84b904d1a2b66340aa8f980
Size

72KB
Sample

240610-yatkxsybql
MD5

4f9bb3f0b8c25d14893d4182fecadd46
SHA1

fc8324f563ec77431282366de9f0a9be44e9a2a1
SHA256

21f1c3648ddd79d3593cbbe8a1f0bf66e0a3480cf84b904d1a2b66340aa8f980
SHA512

722f6cbd61a9ebb746d3fe037538982bcbeb143c4fe3e7c8c64ce1908bb721559f585dcc251555148596e114c122c4423e934be4a1fa7e5742d2d0803fc57884
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2j:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrP3

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  21f1c3648ddd79d3593cbbe8a1f0bf66e0a3480cf84b904d1a2b66340aa8f980
- Size
  
  72KB
- MD5
  
  4f9bb3f0b8c25d14893d4182fecadd46
- SHA1
  
  fc8324f563ec77431282366de9f0a9be44e9a2a1
- SHA256
  
  21f1c3648ddd79d3593cbbe8a1f0bf66e0a3480cf84b904d1a2b66340aa8f980
- SHA512
  
  722f6cbd61a9ebb746d3fe037538982bcbeb143c4fe3e7c8c64ce1908bb721559f585dcc251555148596e114c122c4423e934be4a1fa7e5742d2d0803fc57884
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2j:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrP3
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2