45abec5d4a3c0ee52819a559ebf3ff7818b32e957cdbb200840f069304de8a28 | Triage

Sharing

General

Target

45abec5d4a3c0ee52819a559ebf3ff7818b32e957cdbb200840f069304de8a28
Size

32KB
Sample

220520-2n6n7aagcn
MD5

02e15e86b25abc73a72490628362c738
SHA1

7f0db53d1eb74e9df8a430f425284258e5b4f997
SHA256

45abec5d4a3c0ee52819a559ebf3ff7818b32e957cdbb200840f069304de8a28
SHA512

cd362c088b4774a0fde88298b316308b3356508edd6d2b2d1984543184922ca4bd88d4d748c33a11564a21a51d79eeee8c45488f696ac705d4cb6d0ccbe023f3

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  45abec5d4a3c0ee52819a559ebf3ff7818b32e957cdbb200840f069304de8a28
- Size
  
  32KB
- MD5
  
  02e15e86b25abc73a72490628362c738
- SHA1
  
  7f0db53d1eb74e9df8a430f425284258e5b4f997
- SHA256
  
  45abec5d4a3c0ee52819a559ebf3ff7818b32e957cdbb200840f069304de8a28
- SHA512
  
  cd362c088b4774a0fde88298b316308b3356508edd6d2b2d1984543184922ca4bd88d4d748c33a11564a21a51d79eeee8c45488f696ac705d4cb6d0ccbe023f3
Score

8^/10

evasion persistence
- Modifies Windows Firewall
  evasion
- Drops startup file
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence