2391a9e5df3567a8ae74e75b0725e1937c3b80db9ed68976f01df0b1ac0da658 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2391a9e5df3567a8ae74e75b0725e1937c3b80db9ed68976f01df0b1ac0da658
Size

91KB
Sample

240801-z81bsswgkl
MD5

6b949480d357ce1717e842dde9fd9ccd
SHA1

22879515fd84b30915a1abd877c85d4fa9b031b3
SHA256

2391a9e5df3567a8ae74e75b0725e1937c3b80db9ed68976f01df0b1ac0da658
SHA512

f088fa08c275352d14fb213651172d8603adbc83e1e27b399bf0ddf95342db7fd4083960c43360af495fb86988093540a556ca086ad4aa6924388b58374749b6
SSDEEP

768:NMpQNwC3BEddsEqOt/hytp+x3BEJwRrSXOQ69zbjlAAX5e9zY:yeTce/U/hKYuKSizbR9XwzY

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  2391a9e5df3567a8ae74e75b0725e1937c3b80db9ed68976f01df0b1ac0da658
- Size
  
  91KB
- MD5
  
  6b949480d357ce1717e842dde9fd9ccd
- SHA1
  
  22879515fd84b30915a1abd877c85d4fa9b031b3
- SHA256
  
  2391a9e5df3567a8ae74e75b0725e1937c3b80db9ed68976f01df0b1ac0da658
- SHA512
  
  f088fa08c275352d14fb213651172d8603adbc83e1e27b399bf0ddf95342db7fd4083960c43360af495fb86988093540a556ca086ad4aa6924388b58374749b6
- SSDEEP
  
  768:NMpQNwC3BEddsEqOt/hytp+x3BEJwRrSXOQ69zbjlAAX5e9zY:yeTce/U/hKYuKSizbR9XwzY
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion