7b0c292d9134432fe7748373e2294c03a10b56312c5fc3083b8ba22e68278805 | Triage

Sharing

General

Target

7b0c292d9134432fe7748373e2294c03a10b56312c5fc3083b8ba22e68278805
Size

132KB
Sample

220919-gqnaeabca4
MD5

a92757def965e52e446bd09beb74556f
SHA1

1addb6fe2f2dca4cba2c04b4f3848d486d2c24c8
SHA256

7b0c292d9134432fe7748373e2294c03a10b56312c5fc3083b8ba22e68278805
SHA512

c3e61b02c396fe5764d4119cde8e866a0711f2d20a48606bf72e43628999a30b8bdb529a9ecd7b9808063b5706a3f6b5facdc4eb5310964cfa61af1b71694e19
SSDEEP

3072:Z50I6Lw+X+xnh8+XXfzgvn7dhTKmlDxk4E/zlLMBFiut3bx:Z5SVX+b8Krgf7d0tP/zlgBFiU

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  7b0c292d9134432fe7748373e2294c03a10b56312c5fc3083b8ba22e68278805
- Size
  
  132KB
- MD5
  
  a92757def965e52e446bd09beb74556f
- SHA1
  
  1addb6fe2f2dca4cba2c04b4f3848d486d2c24c8
- SHA256
  
  7b0c292d9134432fe7748373e2294c03a10b56312c5fc3083b8ba22e68278805
- SHA512
  
  c3e61b02c396fe5764d4119cde8e866a0711f2d20a48606bf72e43628999a30b8bdb529a9ecd7b9808063b5706a3f6b5facdc4eb5310964cfa61af1b71694e19
- SSDEEP
  
  3072:Z50I6Lw+X+xnh8+XXfzgvn7dhTKmlDxk4E/zlLMBFiut3bx:Z5SVX+b8Krgf7d0tP/zlgBFiU
Score

8^/10

evasion persistence
- Executes dropped EXE
- Modifies Windows Firewall
  evasion
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

evasionpersistence