0912e07ccf2074736ed24bcda493d05d75c7d35b478fbc348aaf33a527d06876 | Triage

Sharing

General

Target

0912e07ccf2074736ed24bcda493d05d75c7d35b478fbc348aaf33a527d06876N.exe
Size

91KB
Sample

241122-hnarzawkgz
MD5

82982afa7575ee80b6a3a4741a868100
SHA1

a2190afe5c205c3405565acc10be72f445f41e41
SHA256

0912e07ccf2074736ed24bcda493d05d75c7d35b478fbc348aaf33a527d06876
SHA512

08e8435517c36e7cbe1c26c3d0c6efe0c7fbc176abc490d1781fdba128fbb4fe38ce7a4b6387c6588cd2233f9d75a7d11847b4d7914e77cc6f0e592f0154b85b
SSDEEP

768:NMpQNwC3BEddsEqOt/hytp+x3BEJwRrSXOQ69zbjlAAX5e9zWC:yeTce/U/hKYuKSizbR9Xwzl

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  0912e07ccf2074736ed24bcda493d05d75c7d35b478fbc348aaf33a527d06876N.exe
- Size
  
  91KB
- MD5
  
  82982afa7575ee80b6a3a4741a868100
- SHA1
  
  a2190afe5c205c3405565acc10be72f445f41e41
- SHA256
  
  0912e07ccf2074736ed24bcda493d05d75c7d35b478fbc348aaf33a527d06876
- SHA512
  
  08e8435517c36e7cbe1c26c3d0c6efe0c7fbc176abc490d1781fdba128fbb4fe38ce7a4b6387c6588cd2233f9d75a7d11847b4d7914e77cc6f0e592f0154b85b
- SSDEEP
  
  768:NMpQNwC3BEddsEqOt/hytp+x3BEJwRrSXOQ69zbjlAAX5e9zWC:yeTce/U/hKYuKSizbR9Xwzl
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion