15432e42a8ed2262a8b815c83e5f9c6c8c60db13e122451b141f0d060d28ebd8 | Triage

Sharing

General

Target

15432e42a8ed2262a8b815c83e5f9c6c8c60db13e122451b141f0d060d28ebd8N
Size

122KB
Sample

241006-b82ymatelf
MD5

1ae445b139443923799d0ccc0805c5e0
SHA1

b36084de8b514e440af6398bf56eb547b587e253
SHA256

15432e42a8ed2262a8b815c83e5f9c6c8c60db13e122451b141f0d060d28ebd8
SHA512

8ec8e4b10896a90f40d0a47e4d50d72d93aa71ea03be31939bbea6ae5b9058707b074b5729afc917cd0ce384e892beeb1b27b053214c736856eab94cd8ce3d47
SSDEEP

1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4q:6u8ANCUdgfmD7zey0KUj6TjR9i4q

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  15432e42a8ed2262a8b815c83e5f9c6c8c60db13e122451b141f0d060d28ebd8N
- Size
  
  122KB
- MD5
  
  1ae445b139443923799d0ccc0805c5e0
- SHA1
  
  b36084de8b514e440af6398bf56eb547b587e253
- SHA256
  
  15432e42a8ed2262a8b815c83e5f9c6c8c60db13e122451b141f0d060d28ebd8
- SHA512
  
  8ec8e4b10896a90f40d0a47e4d50d72d93aa71ea03be31939bbea6ae5b9058707b074b5729afc917cd0ce384e892beeb1b27b053214c736856eab94cd8ce3d47
- SSDEEP
  
  1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4q:6u8ANCUdgfmD7zey0KUj6TjR9i4q
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion