fd3728fa27eeff8b93699f603b018ddbf9239df7d6caca36800e825e19ad2200 | Triage

Sharing

General

Target

fd3728fa27eeff8b93699f603b018ddbf9239df7d6caca36800e825e19ad2200N.exe
Size

51KB
Sample

241130-frs2lsylak
MD5

4eed182373d99ee434d33cc7c9286130
SHA1

67d3856b6b057070ed1e4eff2d410957fdf429f2
SHA256

fd3728fa27eeff8b93699f603b018ddbf9239df7d6caca36800e825e19ad2200
SHA512

84a2050f9931499873e2ab4aa3cc38205434b867b7b536501b6924234b143c25f1ecff8973616173b8be851cc470a7628c0ef736a37333ebfae35812a9929c77
SSDEEP

768:s14QuJ1wXRAk5lMWPkIiwDY+8rOmQNwC3BEP+QE:rZ+J9i0Y+8rReT0/E

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  fd3728fa27eeff8b93699f603b018ddbf9239df7d6caca36800e825e19ad2200N.exe
- Size
  
  51KB
- MD5
  
  4eed182373d99ee434d33cc7c9286130
- SHA1
  
  67d3856b6b057070ed1e4eff2d410957fdf429f2
- SHA256
  
  fd3728fa27eeff8b93699f603b018ddbf9239df7d6caca36800e825e19ad2200
- SHA512
  
  84a2050f9931499873e2ab4aa3cc38205434b867b7b536501b6924234b143c25f1ecff8973616173b8be851cc470a7628c0ef736a37333ebfae35812a9929c77
- SSDEEP
  
  768:s14QuJ1wXRAk5lMWPkIiwDY+8rOmQNwC3BEP+QE:rZ+J9i0Y+8rReT0/E
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion