ab53595d557ed2ea05f971ad15904ef9e95db368458c881797d23ca016e17968 | Triage

Sharing

General

Target

ab53595d557ed2ea05f971ad15904ef9e95db368458c881797d23ca016e17968N
Size

47KB
Sample

241002-bpr93stema
MD5

a5a556ccf11d33d5f90f8674942c4c30
SHA1

e568b5f5db69392e40508066c2e6649595a3da57
SHA256

ab53595d557ed2ea05f971ad15904ef9e95db368458c881797d23ca016e17968
SHA512

43bd2c952b7a462dee1c68e2ab9f30663bae836c41d5f3f0a7e77c213110b6035f41eeef1b533b49d9d6ff88dd528fc302e19c3a99da407b691515511d673de5
SSDEEP

768:6msqjsZAj7VFYoeco6iCCa4Hq18wo3BEsi7:rHjhFYoe/6r7oqCdbk

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  ab53595d557ed2ea05f971ad15904ef9e95db368458c881797d23ca016e17968N
- Size
  
  47KB
- MD5
  
  a5a556ccf11d33d5f90f8674942c4c30
- SHA1
  
  e568b5f5db69392e40508066c2e6649595a3da57
- SHA256
  
  ab53595d557ed2ea05f971ad15904ef9e95db368458c881797d23ca016e17968
- SHA512
  
  43bd2c952b7a462dee1c68e2ab9f30663bae836c41d5f3f0a7e77c213110b6035f41eeef1b533b49d9d6ff88dd528fc302e19c3a99da407b691515511d673de5
- SSDEEP
  
  768:6msqjsZAj7VFYoeco6iCCa4Hq18wo3BEsi7:rHjhFYoe/6r7oqCdbk
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

System Time Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion