33443a4a98905dd356a7e59baa7e920dd6e1f9f25580c139fe4f5d488d8e6e14 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

33443a4a98905dd356a7e59baa7e920dd6e1f9f25580c139fe4f5d488d8e6e14
Size

321KB
Sample

221002-edq5eshahl
MD5

6c2195b5306a954cb78543bc05244522
SHA1

50fe17cb809f3a4db15da5dfd3ec5c5f774a40cb
SHA256

33443a4a98905dd356a7e59baa7e920dd6e1f9f25580c139fe4f5d488d8e6e14
SHA512

3de62a06e82b1d64fee9f5213f33d8c445525effd15e5e99df396a8f6577497da857d059827addcb49c8e8e49841b042c69bb6ab67f7fe913c3e96580f073ef6
SSDEEP

6144:5rPEy/nzKfxKDUFte7oLCFtahNhF5m0kGPC0pFFFVxf8vw42qDPnuXoeSwpC:5r1zKfBFc7ooohNhF3Pp/Ev5fuXohwE

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  33443a4a98905dd356a7e59baa7e920dd6e1f9f25580c139fe4f5d488d8e6e14
- Size
  
  321KB
- MD5
  
  6c2195b5306a954cb78543bc05244522
- SHA1
  
  50fe17cb809f3a4db15da5dfd3ec5c5f774a40cb
- SHA256
  
  33443a4a98905dd356a7e59baa7e920dd6e1f9f25580c139fe4f5d488d8e6e14
- SHA512
  
  3de62a06e82b1d64fee9f5213f33d8c445525effd15e5e99df396a8f6577497da857d059827addcb49c8e8e49841b042c69bb6ab67f7fe913c3e96580f073ef6
- SSDEEP
  
  6144:5rPEy/nzKfxKDUFte7oLCFtahNhF5m0kGPC0pFFFVxf8vw42qDPnuXoeSwpC:5r1zKfBFc7ooohNhF3Pp/Ev5fuXohwE
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2