d00fd920b645aa773e2c81405e8e7623ce4b7b740e11b8da6e0c60cfc785fbcc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d00fd920b645aa773e2c81405e8e7623ce4b7b740e11b8da6e0c60cfc785fbcc
Size

200KB
Sample

221003-vt6g2sgdfm
MD5

4dcd74b5781d98cb24e693c1fc55b3f0
SHA1

e9ba59334db30e32a1ca01ff89574dbe9f4a1115
SHA256

d00fd920b645aa773e2c81405e8e7623ce4b7b740e11b8da6e0c60cfc785fbcc
SHA512

e53d46a032df0b05863c0e0a62a91f4769399db5cc6079f641918e253a015aa3548f1f480a91b9a4fbd6a33ed87aba6dae3c85f7c9ae27061676340306550447
SSDEEP

3072:39DDHR59l1E2TUptVWwNCjBA7ksq73N1NDmiq4iYsTZdsvKnxv2JQDM/fB:39XxzTTtKOKDq73N1Nu4sfaym

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  d00fd920b645aa773e2c81405e8e7623ce4b7b740e11b8da6e0c60cfc785fbcc
- Size
  
  200KB
- MD5
  
  4dcd74b5781d98cb24e693c1fc55b3f0
- SHA1
  
  e9ba59334db30e32a1ca01ff89574dbe9f4a1115
- SHA256
  
  d00fd920b645aa773e2c81405e8e7623ce4b7b740e11b8da6e0c60cfc785fbcc
- SHA512
  
  e53d46a032df0b05863c0e0a62a91f4769399db5cc6079f641918e253a015aa3548f1f480a91b9a4fbd6a33ed87aba6dae3c85f7c9ae27061676340306550447
- SSDEEP
  
  3072:39DDHR59l1E2TUptVWwNCjBA7ksq73N1NDmiq4iYsTZdsvKnxv2JQDM/fB:39XxzTTtKOKDq73N1Nu4sfaym
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2