23b36e8c767ba99b39d1bfb4561ba1d15e9cd7091650d31ce50f9d5ee0124f3d | Triage

Sharing

General

Target

23b36e8c767ba99b39d1bfb4561ba1d15e9cd7091650d31ce50f9d5ee0124f3d
Size

796KB
Sample

221002-rb2vcsbdak
MD5

64b56af0196afe85b4c242ec3c4350c0
SHA1

bf6dd3b3be7d862569b941bc2ada573d8bad92da
SHA256

23b36e8c767ba99b39d1bfb4561ba1d15e9cd7091650d31ce50f9d5ee0124f3d
SHA512

47abc8c6745df75f532c771a816fb9a7514400b5ccbc61b8b628068f3e8238506e91fe2482ab5d4bf912addd492c895eb959d9243dfae808a04508f40bb8b816
SSDEEP

24576:fvFQaGTzzyG0eEjJPC2/rPpDRXkLBtKcy2a2N6V:lChajhpYv3a2oV

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  23b36e8c767ba99b39d1bfb4561ba1d15e9cd7091650d31ce50f9d5ee0124f3d
- Size
  
  796KB
- MD5
  
  64b56af0196afe85b4c242ec3c4350c0
- SHA1
  
  bf6dd3b3be7d862569b941bc2ada573d8bad92da
- SHA256
  
  23b36e8c767ba99b39d1bfb4561ba1d15e9cd7091650d31ce50f9d5ee0124f3d
- SHA512
  
  47abc8c6745df75f532c771a816fb9a7514400b5ccbc61b8b628068f3e8238506e91fe2482ab5d4bf912addd492c895eb959d9243dfae808a04508f40bb8b816
- SSDEEP
  
  24576:fvFQaGTzzyG0eEjJPC2/rPpDRXkLBtKcy2a2N6V:lChajhpYv3a2oV
Score

10^/10

evasion trojan
- Windows security bypass
  evasion trojan
- Drops file in Drivers directory
- Executes dropped EXE
- Modifies Windows Firewall
  evasion
- Loads dropped DLL
- Windows security modification
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2