60773853db0945d129ce68122956034236c2f85403297f22f2797882cc146af5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4ffed91101b9342768b26950a2ad710N.exe
Size

72KB
Sample

240905-tfayjstglm
MD5

c4ffed91101b9342768b26950a2ad710
SHA1

c3ae901e687fc421a5832484f11ae38cbcf07034
SHA256

60773853db0945d129ce68122956034236c2f85403297f22f2797882cc146af5
SHA512

6c98dd7e813e1a36106e25d924a0b816690360b3ad5511f9abaacf37ec92b9263717970fc5f4f8aa56a2b2c53976e9c8fdb8a71a54d0b69cab9a8a961a0366bd
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2S:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPm

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  c4ffed91101b9342768b26950a2ad710N.exe
- Size
  
  72KB
- MD5
  
  c4ffed91101b9342768b26950a2ad710
- SHA1
  
  c3ae901e687fc421a5832484f11ae38cbcf07034
- SHA256
  
  60773853db0945d129ce68122956034236c2f85403297f22f2797882cc146af5
- SHA512
  
  6c98dd7e813e1a36106e25d924a0b816690360b3ad5511f9abaacf37ec92b9263717970fc5f4f8aa56a2b2c53976e9c8fdb8a71a54d0b69cab9a8a961a0366bd
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2S:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPm
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion