d92ec598e7248a2d554bf30dc19fa9ced92a7127b8dec3babb490f83f29e9926 | Triage

Sharing

General

Target

d92ec598e7248a2d554bf30dc19fa9ced92a7127b8dec3babb490f83f29e9926N
Size

79KB
Sample

240920-ryt32asanr
MD5

f9085f75bbf4ca65371a147cdd020f90
SHA1

77bbfe4138853db1a37008b3f8af0cf985955e4e
SHA256

d92ec598e7248a2d554bf30dc19fa9ced92a7127b8dec3babb490f83f29e9926
SHA512

05c656158110da5a9b0ad092a0195dfc2ac16ea3c14c304c92496c17cff9bd679d53b523eaac465648ed212a10145314d335ecb25fc6460d61adf8af1f43ba03
SSDEEP

768:FMpQNwC3BEddsEqOt/hyJuQNwC3BEp+Rr799mHN:qeTce/U/hjeTqwu

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  d92ec598e7248a2d554bf30dc19fa9ced92a7127b8dec3babb490f83f29e9926N
- Size
  
  79KB
- MD5
  
  f9085f75bbf4ca65371a147cdd020f90
- SHA1
  
  77bbfe4138853db1a37008b3f8af0cf985955e4e
- SHA256
  
  d92ec598e7248a2d554bf30dc19fa9ced92a7127b8dec3babb490f83f29e9926
- SHA512
  
  05c656158110da5a9b0ad092a0195dfc2ac16ea3c14c304c92496c17cff9bd679d53b523eaac465648ed212a10145314d335ecb25fc6460d61adf8af1f43ba03
- SSDEEP
  
  768:FMpQNwC3BEddsEqOt/hyJuQNwC3BEp+Rr799mHN:qeTce/U/hjeTqwu
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion