99ddc7d28ba669586a306ef72580a0f97a7fb9a3bb2136e8f2e74dc6161ab33a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

99ddc7d28ba669586a306ef72580a0f97a7fb9a3bb2136e8f2e74dc6161ab33aN
Size

122KB
Sample

241005-hbvlls1bjl
MD5

c24f94620dc331d341c6a07473886950
SHA1

b966be8053304464cf97bbb4ed557aa81e30aa64
SHA256

99ddc7d28ba669586a306ef72580a0f97a7fb9a3bb2136e8f2e74dc6161ab33a
SHA512

811e629ecd7e8b86dbb260c36edbba1d5c490c7446bc6617f1b3301a7a8528050dc1ccdc3cc7a10cddc4883d9ce0d753686f7a1bea0b48bbb3f355985b3b4698
SSDEEP

1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4s:6u8ANCUdgfmD7zey0KUj6TjR9i4s

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  99ddc7d28ba669586a306ef72580a0f97a7fb9a3bb2136e8f2e74dc6161ab33aN
- Size
  
  122KB
- MD5
  
  c24f94620dc331d341c6a07473886950
- SHA1
  
  b966be8053304464cf97bbb4ed557aa81e30aa64
- SHA256
  
  99ddc7d28ba669586a306ef72580a0f97a7fb9a3bb2136e8f2e74dc6161ab33a
- SHA512
  
  811e629ecd7e8b86dbb260c36edbba1d5c490c7446bc6617f1b3301a7a8528050dc1ccdc3cc7a10cddc4883d9ce0d753686f7a1bea0b48bbb3f355985b3b4698
- SSDEEP
  
  1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4s:6u8ANCUdgfmD7zey0KUj6TjR9i4s
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

System Time Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion