ef29fbf522ce1e6386e51113646218ef3b8d046a25a573105841ec11173e77a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4865ed285186ee989f4f52bdacf98c10N.exe
Size

122KB
Sample

240905-dbbraasgmh
MD5

4865ed285186ee989f4f52bdacf98c10
SHA1

6e1b0e6ed17e184dce1b54b52e152e41d0e38815
SHA256

ef29fbf522ce1e6386e51113646218ef3b8d046a25a573105841ec11173e77a0
SHA512

5e65e86e8f3663b03ad9a24862d9e92fc960e8492c231a1dae2624d26734f12fb7cec2e567e3ebccc6f7339ff1e2f9cf427b168e4d34c2043b121a2610ae4bab
SSDEEP

1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4t:6u8ANCUdgfmD7zey0KUj6TjR9i4t

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  4865ed285186ee989f4f52bdacf98c10N.exe
- Size
  
  122KB
- MD5
  
  4865ed285186ee989f4f52bdacf98c10
- SHA1
  
  6e1b0e6ed17e184dce1b54b52e152e41d0e38815
- SHA256
  
  ef29fbf522ce1e6386e51113646218ef3b8d046a25a573105841ec11173e77a0
- SHA512
  
  5e65e86e8f3663b03ad9a24862d9e92fc960e8492c231a1dae2624d26734f12fb7cec2e567e3ebccc6f7339ff1e2f9cf427b168e4d34c2043b121a2610ae4bab
- SSDEEP
  
  1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4t:6u8ANCUdgfmD7zey0KUj6TjR9i4t
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion