24bcad85788357093d1e9044780b46fa2eb1ba7e89be1a9ec9af84915600abfc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

111dc17a68d4786f3e8a09e8d2d38cb0N
Size

72KB
Sample

240914-vw3tyawdma
MD5

111dc17a68d4786f3e8a09e8d2d38cb0
SHA1

11dbb3fa17637eaa2bd97d6c1ccd528eaa2244b0
SHA256

24bcad85788357093d1e9044780b46fa2eb1ba7e89be1a9ec9af84915600abfc
SHA512

5964385c00ec9be03dc855b9578843fc3b51d141ec3bc244f8cc86b47ca0e6de81b157df6e42b6d050d530887ba1dfd60fe32913edc09af3a6fe992d084534f6
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2b:ipQNwC3BEddsEqOt/hyJF+x3BEJwRr3

Score

10^/10

discovery evasion persistence

Malware Config

Targets

- Target
  
  111dc17a68d4786f3e8a09e8d2d38cb0N
- Size
  
  72KB
- MD5
  
  111dc17a68d4786f3e8a09e8d2d38cb0
- SHA1
  
  11dbb3fa17637eaa2bd97d6c1ccd528eaa2244b0
- SHA256
  
  24bcad85788357093d1e9044780b46fa2eb1ba7e89be1a9ec9af84915600abfc
- SHA512
  
  5964385c00ec9be03dc855b9578843fc3b51d141ec3bc244f8cc86b47ca0e6de81b157df6e42b6d050d530887ba1dfd60fe32913edc09af3a6fe992d084534f6
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2b:ipQNwC3BEddsEqOt/hyJF+x3BEJwRr3
Score

10^/10

discovery evasion persistence
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Power Settings
  powercfg controls all configurable power system settings on a Windows system and can be abused to prevent an infected host from locking or shutting down.
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Power Settings

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence

behavioral2

discoveryevasion