2669cc7a683bf026bc102ad9eb3ae67eb15da3a9919646dfd033f3e748cfe2f3 | Triage

Sharing

General

Target

2669cc7a683bf026bc102ad9eb3ae67eb15da3a9919646dfd033f3e748cfe2f3
Size

1.1MB
Sample

220725-dfzc5scahn
MD5

af8448fb9c282ffc9151f22cad6db500
SHA1

9c98c7c2f5e53a5776fc1d6609f171722b388929
SHA256

2669cc7a683bf026bc102ad9eb3ae67eb15da3a9919646dfd033f3e748cfe2f3
SHA512

92b97db55e4e0f985e104c63cb785090e2d2f0cbe42f4253cd987f2f311892afdcbcc4b1ed87e788d4c5e4fd632f3c8021526f79bfffd5e4a80d3e81d32bc702

Score

10^/10

evasion suricata

Malware Config

Targets

- Target
  
  2669cc7a683bf026bc102ad9eb3ae67eb15da3a9919646dfd033f3e748cfe2f3
- Size
  
  1.1MB
- MD5
  
  af8448fb9c282ffc9151f22cad6db500
- SHA1
  
  9c98c7c2f5e53a5776fc1d6609f171722b388929
- SHA256
  
  2669cc7a683bf026bc102ad9eb3ae67eb15da3a9919646dfd033f3e748cfe2f3
- SHA512
  
  92b97db55e4e0f985e104c63cb785090e2d2f0cbe42f4253cd987f2f311892afdcbcc4b1ed87e788d4c5e4fd632f3c8021526f79bfffd5e4a80d3e81d32bc702
Score

10^/10

evasion suricata
- Modifies firewall policy service
  evasion
- suricata: ET MALWARE Known Hostile Domain ilo.brenz .pl Lookup
  suricata: ET MALWARE Known Hostile Domain ilo.brenz .pl Lookup
  suricata
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

evasionsuricata