d8787d9cf440ead0559416f7b00b1ec341a7f7dd3e02348ef27e73df44b41ba8 | Triage

Sharing

General

Target

d8787d9cf440ead0559416f7b00b1ec341a7f7dd3e02348ef27e73df44b41ba8N
Size

122KB
Sample

240918-1w1x8swamn
MD5

55a9b247dce49e05eb591266c9cb1670
SHA1

07cfe64f9bf68f4d8224126a157b723dd33af1ed
SHA256

d8787d9cf440ead0559416f7b00b1ec341a7f7dd3e02348ef27e73df44b41ba8
SHA512

7ec0a2fffb19314610c000138dfab26c679cbb1f039014b96c771e60940b11a5af2a8701901451cc92172e152ffad891a5b10e3e86af07057539a791f06ecba0
SSDEEP

1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4L:6u8ANCUdgfmD7zey0KUj6TjR9i4L

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  d8787d9cf440ead0559416f7b00b1ec341a7f7dd3e02348ef27e73df44b41ba8N
- Size
  
  122KB
- MD5
  
  55a9b247dce49e05eb591266c9cb1670
- SHA1
  
  07cfe64f9bf68f4d8224126a157b723dd33af1ed
- SHA256
  
  d8787d9cf440ead0559416f7b00b1ec341a7f7dd3e02348ef27e73df44b41ba8
- SHA512
  
  7ec0a2fffb19314610c000138dfab26c679cbb1f039014b96c771e60940b11a5af2a8701901451cc92172e152ffad891a5b10e3e86af07057539a791f06ecba0
- SSDEEP
  
  1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4L:6u8ANCUdgfmD7zey0KUj6TjR9i4L
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion