b1dfe463c8b0ec42d6ee7a9ae6dcc2f07b0e414be9e5a68a39f8946c13fc4c13 | Triage

Sharing

General

Target

699be406636b57514264de62cf440f40N.exe
Size

47KB
Sample

240825-tl9n3avanr
MD5

699be406636b57514264de62cf440f40
SHA1

7f33ac381b22f1f5860f84a8ba439f8a141c3c5c
SHA256

b1dfe463c8b0ec42d6ee7a9ae6dcc2f07b0e414be9e5a68a39f8946c13fc4c13
SHA512

8ed907086bb5cf93c1745e0367e6bf0d6c10c5c8ecea844122bfeff349b09d21dd7868abcac6e572c4f5927b94e993b2710fbc5aad193e180659333b4c50dd15
SSDEEP

768:6msqjsZAj7VFYoeco6iCCa4Hq18wo3BEsi3:rHjhFYoe/6r7oqCdbI

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  699be406636b57514264de62cf440f40N.exe
- Size
  
  47KB
- MD5
  
  699be406636b57514264de62cf440f40
- SHA1
  
  7f33ac381b22f1f5860f84a8ba439f8a141c3c5c
- SHA256
  
  b1dfe463c8b0ec42d6ee7a9ae6dcc2f07b0e414be9e5a68a39f8946c13fc4c13
- SHA512
  
  8ed907086bb5cf93c1745e0367e6bf0d6c10c5c8ecea844122bfeff349b09d21dd7868abcac6e572c4f5927b94e993b2710fbc5aad193e180659333b4c50dd15
- SSDEEP
  
  768:6msqjsZAj7VFYoeco6iCCa4Hq18wo3BEsi3:rHjhFYoe/6r7oqCdbI
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion