b6f12a8162d1da5c61896f21487c4cce6c6546631cd40c769cb8f331a1773d8f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6f12a8162d1da5c61896f21487c4cce6c6546631cd40c769cb8f331a1773d8f
Size

91KB
Sample

240930-b6ds1swajb
MD5

337a99d9bb1871a3611d7cf9ea5a7c1a
SHA1

357da518b4382056a887b0ad9a5b7f06ca818477
SHA256

b6f12a8162d1da5c61896f21487c4cce6c6546631cd40c769cb8f331a1773d8f
SHA512

151e69e4c86485b5377b2916667858d99a255bab4ba35022c15284b1175cab82c316c3936c8fadee40822583e0d57d7ccada540c0fc3b81510b4153697c751fe
SSDEEP

768:NMpQNwC3BEddsEqOt/hytp+x3BEJwRrSXOQ69zbjlAAX5e9zQ:yeTce/U/hKYuKSizbR9XwzQ

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  b6f12a8162d1da5c61896f21487c4cce6c6546631cd40c769cb8f331a1773d8f
- Size
  
  91KB
- MD5
  
  337a99d9bb1871a3611d7cf9ea5a7c1a
- SHA1
  
  357da518b4382056a887b0ad9a5b7f06ca818477
- SHA256
  
  b6f12a8162d1da5c61896f21487c4cce6c6546631cd40c769cb8f331a1773d8f
- SHA512
  
  151e69e4c86485b5377b2916667858d99a255bab4ba35022c15284b1175cab82c316c3936c8fadee40822583e0d57d7ccada540c0fc3b81510b4153697c751fe
- SSDEEP
  
  768:NMpQNwC3BEddsEqOt/hytp+x3BEJwRrSXOQ69zbjlAAX5e9zQ:yeTce/U/hKYuKSizbR9XwzQ
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion