4b04f9b62a3b13392017ca6c9228c19d07b89a26ea74ef534ba7948a702d13a1 | Triage

Sharing

General

Target

4b04f9b62a3b13392017ca6c9228c19d07b89a26ea74ef534ba7948a702d13a1
Size

122KB
Sample

240907-z9c8naycqb
MD5

5b79287c42fe00e2182d5822ecc01890
SHA1

4e965027787de3869ec56659395f50e86dd43220
SHA256

4b04f9b62a3b13392017ca6c9228c19d07b89a26ea74ef534ba7948a702d13a1
SHA512

6d12ec8162d4b9a4a4e996437eda1b5b4da371fca373f36c923c5ff36ca0263082db21735ee3d433194e583706461c5ea6cd2df79418bb8722f8b1021d73af0d
SSDEEP

1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4Q:6u8ANCUdgfmD7zey0KUj6TjR9i4Q

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  4b04f9b62a3b13392017ca6c9228c19d07b89a26ea74ef534ba7948a702d13a1
- Size
  
  122KB
- MD5
  
  5b79287c42fe00e2182d5822ecc01890
- SHA1
  
  4e965027787de3869ec56659395f50e86dd43220
- SHA256
  
  4b04f9b62a3b13392017ca6c9228c19d07b89a26ea74ef534ba7948a702d13a1
- SHA512
  
  6d12ec8162d4b9a4a4e996437eda1b5b4da371fca373f36c923c5ff36ca0263082db21735ee3d433194e583706461c5ea6cd2df79418bb8722f8b1021d73af0d
- SSDEEP
  
  1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4Q:6u8ANCUdgfmD7zey0KUj6TjR9i4Q
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion