e5faa414f38ab96297a284e5a3f8f022475380c763dfc609455adda5f0e985c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5e942141b92b36d8d1fe674c97db9480N
Size

122KB
Sample

240912-bykllathml
MD5

5e942141b92b36d8d1fe674c97db9480
SHA1

c060215240d8edcad51b365a16c6f21a750b6fff
SHA256

e5faa414f38ab96297a284e5a3f8f022475380c763dfc609455adda5f0e985c1
SHA512

dee2a673d92f2c1db1803c74e81496c94efe1517a508991e88a2514d44bcb9d13d064b096d14548bff18dfb54a35a47da3dc3ac55706a782695914447fb30b0b
SSDEEP

1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4O:6u8ANCUdgfmD7zey0KUj6TjR9i4O

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  5e942141b92b36d8d1fe674c97db9480N
- Size
  
  122KB
- MD5
  
  5e942141b92b36d8d1fe674c97db9480
- SHA1
  
  c060215240d8edcad51b365a16c6f21a750b6fff
- SHA256
  
  e5faa414f38ab96297a284e5a3f8f022475380c763dfc609455adda5f0e985c1
- SHA512
  
  dee2a673d92f2c1db1803c74e81496c94efe1517a508991e88a2514d44bcb9d13d064b096d14548bff18dfb54a35a47da3dc3ac55706a782695914447fb30b0b
- SSDEEP
  
  1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4O:6u8ANCUdgfmD7zey0KUj6TjR9i4O
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

System Time Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion