netwalker | 290ad13e5f04cbdd63c38404fdb3c287d9dcbc391fabddf5dd8578f006ab6b6d | Triage

Sharing

General

Target

290ad13e5f04cbdd63c38404fdb3c287d9dcbc391fabddf5dd8578f006ab6b6d
Size

66KB
Sample

220201-byx7pafcg2
MD5

01bb27bc94d78f3159aacb184ebf8d58
SHA1

ff92b5356af0710cd91a016618bfdfe95035d4c3
SHA256

290ad13e5f04cbdd63c38404fdb3c287d9dcbc391fabddf5dd8578f006ab6b6d
SHA512

8c0583476144a3752d16e633bf1805571503c42d0e09112f1993e97da4c546bd5335a06d4d31dc7b63d30c7bdbd5842731eb24b4094dd12253ae531460da140d

Score

10^/10

netwalker persistence

Malware Config

Targets

- Target
  
  290ad13e5f04cbdd63c38404fdb3c287d9dcbc391fabddf5dd8578f006ab6b6d
- Size
  
  66KB
- MD5
  
  01bb27bc94d78f3159aacb184ebf8d58
- SHA1
  
  ff92b5356af0710cd91a016618bfdfe95035d4c3
- SHA256
  
  290ad13e5f04cbdd63c38404fdb3c287d9dcbc391fabddf5dd8578f006ab6b6d
- SHA512
  
  8c0583476144a3752d16e633bf1805571503c42d0e09112f1993e97da4c546bd5335a06d4d31dc7b63d30c7bdbd5842731eb24b4094dd12253ae531460da140d
Score

8^/10

persistence
- Sets service image path in registry
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2