4c3029f024fcd634a4a9a1686a4797e50e48c0db9570d4ac69d98541eb0bf416 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c3029f024fcd634a4a9a1686a4797e50e48c0db9570d4ac69d98541eb0bf416N
Size

47KB
Sample

241009-pc65csthjm
MD5

9d2e3180840139aee142783b77303250
SHA1

44c4a037526cb0548426e3e93299aeccb6e01806
SHA256

4c3029f024fcd634a4a9a1686a4797e50e48c0db9570d4ac69d98541eb0bf416
SHA512

e9926651168cf503958c1598cfda1b96db81713d2c182144a79a2d43926c592bcb555c7a6a12cc0cdbbcc779247803a35a7b641c8d8be3aca6f7a64edbc5e864
SSDEEP

768:6msqjsZAj7VFYoeco6iCCa4Hq18wo3BEsiP:rHjhFYoe/6r7oqCdbQ

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  4c3029f024fcd634a4a9a1686a4797e50e48c0db9570d4ac69d98541eb0bf416N
- Size
  
  47KB
- MD5
  
  9d2e3180840139aee142783b77303250
- SHA1
  
  44c4a037526cb0548426e3e93299aeccb6e01806
- SHA256
  
  4c3029f024fcd634a4a9a1686a4797e50e48c0db9570d4ac69d98541eb0bf416
- SHA512
  
  e9926651168cf503958c1598cfda1b96db81713d2c182144a79a2d43926c592bcb555c7a6a12cc0cdbbcc779247803a35a7b641c8d8be3aca6f7a64edbc5e864
- SSDEEP
  
  768:6msqjsZAj7VFYoeco6iCCa4Hq18wo3BEsiP:rHjhFYoe/6r7oqCdbQ
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion