3d9377fdf93e6f87098370e5787495bbabc3fdea3de813bf5729191d836888ea | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d9377fdf93e6f87098370e5787495bbabc3fdea3de813bf5729191d836888ea
Size

205KB
Sample

221003-wdawwaheb3
MD5

6b3374ffbd728bfad651b94f03befeb2
SHA1

f4615d94423e43e061bc3563fee5d2e2825a1f40
SHA256

3d9377fdf93e6f87098370e5787495bbabc3fdea3de813bf5729191d836888ea
SHA512

1c4692183740a0fe7e16bac502cfb16c3a7740f2825ea0c3a2972cfa00c09c95fc1d26532437e17986fbfd2bdb738a7f18d05ef3379bd1d69cc99621534a091a
SSDEEP

3072:iBon18JyHSnAdfalxv6MK017FB7aadHsE50P5Y0i+L/La+BhaedPvW:iBE8JyHSnAQjaadHsEqti+z2+Xl

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  3d9377fdf93e6f87098370e5787495bbabc3fdea3de813bf5729191d836888ea
- Size
  
  205KB
- MD5
  
  6b3374ffbd728bfad651b94f03befeb2
- SHA1
  
  f4615d94423e43e061bc3563fee5d2e2825a1f40
- SHA256
  
  3d9377fdf93e6f87098370e5787495bbabc3fdea3de813bf5729191d836888ea
- SHA512
  
  1c4692183740a0fe7e16bac502cfb16c3a7740f2825ea0c3a2972cfa00c09c95fc1d26532437e17986fbfd2bdb738a7f18d05ef3379bd1d69cc99621534a091a
- SSDEEP
  
  3072:iBon18JyHSnAdfalxv6MK017FB7aadHsE50P5Y0i+L/La+BhaedPvW:iBE8JyHSnAQjaadHsEqti+z2+Xl
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2