eec2ce89af284197802928c9b825405cb412b2de2ae1d95599a2f2315be86b76 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eec2ce89af284197802928c9b825405cb412b2de2ae1d95599a2f2315be86b76
Size

207KB
Sample

221003-vp9nxagbh4
MD5

03de7d8b714907f4bc447832935ddea0
SHA1

0dd3768cfafde4046038acb17c03addafd147f65
SHA256

eec2ce89af284197802928c9b825405cb412b2de2ae1d95599a2f2315be86b76
SHA512

dae7cddbffc5e70c040bf68173da11f110b65894e08154b57421a5dcee687ba3d455a85225cf5ae06f8d75efe301fa2413203b3a72e5dacdc88e7a8dd65cc5a8
SSDEEP

3072:0rGZELOILGHI0PJ9J4OSuMpCkQ/D+Vm/KjMBt:HZELOPHHkO7YrQiV1q

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  eec2ce89af284197802928c9b825405cb412b2de2ae1d95599a2f2315be86b76
- Size
  
  207KB
- MD5
  
  03de7d8b714907f4bc447832935ddea0
- SHA1
  
  0dd3768cfafde4046038acb17c03addafd147f65
- SHA256
  
  eec2ce89af284197802928c9b825405cb412b2de2ae1d95599a2f2315be86b76
- SHA512
  
  dae7cddbffc5e70c040bf68173da11f110b65894e08154b57421a5dcee687ba3d455a85225cf5ae06f8d75efe301fa2413203b3a72e5dacdc88e7a8dd65cc5a8
- SSDEEP
  
  3072:0rGZELOILGHI0PJ9J4OSuMpCkQ/D+Vm/KjMBt:HZELOPHHkO7YrQiV1q
Score

10^/10

evasion trojan
- Modifies firewall policy service
  evasion
- UAC bypass
  evasion trojan
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2