Overview

overview

10

Static

static

10

ac13f63f79...b6.exe

windows7_x64

1

ac13f63f79...b6.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ac13f63f791de1dfd65404631b33e202ba3d4547fd2b6900215f335ccabbeab6

  • Size

    3.9MB

  • Sample

    220709-j4z78sdbap

  • MD5

    d7367b582a099c96a2cbee8f03109c3e

  • SHA1

    573db2aab4bddcc8dd24a2dafb476845fa608a2b

  • SHA256

    ac13f63f791de1dfd65404631b33e202ba3d4547fd2b6900215f335ccabbeab6

  • SHA512

    4177debd2d8bcd5c11f9538bcb0014f9187a6ddc4499a54a0e8bfae3a691c3b4ac4596236f45c30ddb5572b4d3989ad8eefe46015b4479a0a83d060a5bdd94f2

Score
10/10
neshtaevasion

Malware Config

Targets

    • Target

      ac13f63f791de1dfd65404631b33e202ba3d4547fd2b6900215f335ccabbeab6

    • Size

      3.9MB

    • MD5

      d7367b582a099c96a2cbee8f03109c3e

    • SHA1

      573db2aab4bddcc8dd24a2dafb476845fa608a2b

    • SHA256

      ac13f63f791de1dfd65404631b33e202ba3d4547fd2b6900215f335ccabbeab6

    • SHA512

      4177debd2d8bcd5c11f9538bcb0014f9187a6ddc4499a54a0e8bfae3a691c3b4ac4596236f45c30ddb5572b4d3989ad8eefe46015b4479a0a83d060a5bdd94f2

    Score
    10/10
    evasion

    • Modifies firewall policy service

      evasion
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

1
T1031

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks