5b312c1cb23442bf14a8c0772b588c9a7d93345eb4d543b930fb1da3017cf3d3 | Triage

Sharing

General

Target

5b312c1cb23442bf14a8c0772b588c9a7d93345eb4d543b930fb1da3017cf3d3N
Size

64KB
Sample

240919-erdfgs1amq
MD5

284e3b18a219ae5eb9e7791a7b97f900
SHA1

d205fe781220c47589dedfa1c89546978ad10cdc
SHA256

5b312c1cb23442bf14a8c0772b588c9a7d93345eb4d543b930fb1da3017cf3d3
SHA512

aad4167c5794cb519a948dedbcd0ad1710272f6b028bb4f515fe5fe7275d7b6f230fb4827e4612099a6f792f2996c1cfa5bb2a3cb0b55a108c50655548e38852
SSDEEP

768:qpQNwC3BET4QEfu0Ei8XxNDIN/3BEJwsrm:KeTqavEjDWpuhm

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  5b312c1cb23442bf14a8c0772b588c9a7d93345eb4d543b930fb1da3017cf3d3N
- Size
  
  64KB
- MD5
  
  284e3b18a219ae5eb9e7791a7b97f900
- SHA1
  
  d205fe781220c47589dedfa1c89546978ad10cdc
- SHA256
  
  5b312c1cb23442bf14a8c0772b588c9a7d93345eb4d543b930fb1da3017cf3d3
- SHA512
  
  aad4167c5794cb519a948dedbcd0ad1710272f6b028bb4f515fe5fe7275d7b6f230fb4827e4612099a6f792f2996c1cfa5bb2a3cb0b55a108c50655548e38852
- SSDEEP
  
  768:qpQNwC3BET4QEfu0Ei8XxNDIN/3BEJwsrm:KeTqavEjDWpuhm
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion