f2887c3f0ea6ca0b7f5a5d5df1d916a47af76266986b2d0179a37b595d58d1f8 | Triage

Sharing

General

Target

f2887c3f0ea6ca0b7f5a5d5df1d916a47af76266986b2d0179a37b595d58d1f8N
Size

22KB
Sample

240920-s54fqavbrk
MD5

35df925a49792679beecb9f548122730
SHA1

58c2c37b87fc31bdc1889910f8d5fe052f18ffe7
SHA256

f2887c3f0ea6ca0b7f5a5d5df1d916a47af76266986b2d0179a37b595d58d1f8
SHA512

9c3eee28956bc499e5999cd3eb5ba23187fbc4beb3dafc1fd4dc149eb212b8157481c8bf7512e1c0538439010b7e66ebb6efc8976c4273729b8eeb6b797f2984
SSDEEP

384:ztGhPq/PSVoYZXgW8PK3mUarVMYVt8a6c6n5er7EgSgXuJDth0R:zt16VoYZwPK2UarVMYYaFbr799mHq

Score

10^/10

discovery evasion persistence

Malware Config

Targets

- Target
  
  f2887c3f0ea6ca0b7f5a5d5df1d916a47af76266986b2d0179a37b595d58d1f8N
- Size
  
  22KB
- MD5
  
  35df925a49792679beecb9f548122730
- SHA1
  
  58c2c37b87fc31bdc1889910f8d5fe052f18ffe7
- SHA256
  
  f2887c3f0ea6ca0b7f5a5d5df1d916a47af76266986b2d0179a37b595d58d1f8
- SHA512
  
  9c3eee28956bc499e5999cd3eb5ba23187fbc4beb3dafc1fd4dc149eb212b8157481c8bf7512e1c0538439010b7e66ebb6efc8976c4273729b8eeb6b797f2984
- SSDEEP
  
  384:ztGhPq/PSVoYZXgW8PK3mUarVMYVt8a6c6n5er7EgSgXuJDth0R:zt16VoYZwPK2UarVMYYaFbr799mHq
Score

10^/10

discovery evasion persistence
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Power Settings
  powercfg controls all configurable power system settings on a Windows system and can be abused to prevent an infected host from locking or shutting down.
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Power Settings

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence

behavioral2

discoveryevasion