678c63c25ad7e6f4f56beb8064230a8c19ec485a483a7e0504b83ec129287d90 | Triage

Sharing

General

Target

678c63c25ad7e6f4f56beb8064230a8c19ec485a483a7e0504b83ec129287d90N.exe
Size

91KB
Sample

241126-be2e1awkcw
MD5

32b73773622c7ba161f955ace7aa93d0
SHA1

c55e02bcb8b38ece77c49e06f2ed2bbe4d14ccfd
SHA256

678c63c25ad7e6f4f56beb8064230a8c19ec485a483a7e0504b83ec129287d90
SHA512

ea2888deb0d4393cc899ae6e2b757e72fb6705a9affb911b016829effae314bff3946b62135ba8df42b68b7932cff503ab358339abb133b1aa57e19cc088bcfc
SSDEEP

768:NMpQNwC3BEddsEqOt/hytp+x3BEJwRrSXOQ69zbjlAAX5e9zWS:yeTce/U/hKYuKSizbR9XwzN

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  678c63c25ad7e6f4f56beb8064230a8c19ec485a483a7e0504b83ec129287d90N.exe
- Size
  
  91KB
- MD5
  
  32b73773622c7ba161f955ace7aa93d0
- SHA1
  
  c55e02bcb8b38ece77c49e06f2ed2bbe4d14ccfd
- SHA256
  
  678c63c25ad7e6f4f56beb8064230a8c19ec485a483a7e0504b83ec129287d90
- SHA512
  
  ea2888deb0d4393cc899ae6e2b757e72fb6705a9affb911b016829effae314bff3946b62135ba8df42b68b7932cff503ab358339abb133b1aa57e19cc088bcfc
- SSDEEP
  
  768:NMpQNwC3BEddsEqOt/hytp+x3BEJwRrSXOQ69zbjlAAX5e9zWS:yeTce/U/hKYuKSizbR9XwzN
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion