ed4bd7832f0509a97ace2256dc8e37eb134eabc2d91a3cfe4ba91b9c440c0e79 | Triage

Sharing

General

Target

ed4bd7832f0509a97ace2256dc8e37eb134eabc2d91a3cfe4ba91b9c440c0e79.exe
Size

47KB
Sample

241122-hpqjtasjhm
MD5

045c0a7013fa06a8522b06588b41587f
SHA1

dc8ab275b4c4d9272635dc32b580c87177b6a037
SHA256

ed4bd7832f0509a97ace2256dc8e37eb134eabc2d91a3cfe4ba91b9c440c0e79
SHA512

56bf78c7db67ce727d6dcbe70e1b98f9c23f395202ba7e90e156fd1f599ff5b9dbca5b8ac6687b21ea689dde9625c66592c929800698a8671e7d0e19f3a3e3a4
SSDEEP

768:6msqjsZAj7VFYoeco6iCCa4Hq18wo3BEsid:rHjhFYoe/6r7oqCdbS

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  ed4bd7832f0509a97ace2256dc8e37eb134eabc2d91a3cfe4ba91b9c440c0e79.exe
- Size
  
  47KB
- MD5
  
  045c0a7013fa06a8522b06588b41587f
- SHA1
  
  dc8ab275b4c4d9272635dc32b580c87177b6a037
- SHA256
  
  ed4bd7832f0509a97ace2256dc8e37eb134eabc2d91a3cfe4ba91b9c440c0e79
- SHA512
  
  56bf78c7db67ce727d6dcbe70e1b98f9c23f395202ba7e90e156fd1f599ff5b9dbca5b8ac6687b21ea689dde9625c66592c929800698a8671e7d0e19f3a3e3a4
- SSDEEP
  
  768:6msqjsZAj7VFYoeco6iCCa4Hq18wo3BEsid:rHjhFYoe/6r7oqCdbS
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion