05cf986922eb0bb1ff92b4824b02eb7d2c79006b3c891c49caef4dd67b31ccc4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

05cf986922eb0bb1ff92b4824b02eb7d2c79006b3c891c49caef4dd67b31ccc4
Size

64KB
Sample

221003-wkw3pahhd2
MD5

644b53ee3669f0a86352f5c4af35ad00
SHA1

5b8400e68df08848e6aadd362cdacab54a2808dc
SHA256

05cf986922eb0bb1ff92b4824b02eb7d2c79006b3c891c49caef4dd67b31ccc4
SHA512

bdc0c76583ab12edb58b2a162a3a7dbface0a265648b8b753a93a0564bfe4dc053d21cfb65f2a2e9dda1be91924bd97c10925cb5d2cc0eb3a32d02e6cbd4cfa1
SSDEEP

768:NFpQqvq6c0pTzylQU7bvvrx3qRZKhRxvONaShkGWypZCvi2:NFmqvq6dpPHU/vTx3mKhRxvO0/E6i

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  05cf986922eb0bb1ff92b4824b02eb7d2c79006b3c891c49caef4dd67b31ccc4
- Size
  
  64KB
- MD5
  
  644b53ee3669f0a86352f5c4af35ad00
- SHA1
  
  5b8400e68df08848e6aadd362cdacab54a2808dc
- SHA256
  
  05cf986922eb0bb1ff92b4824b02eb7d2c79006b3c891c49caef4dd67b31ccc4
- SHA512
  
  bdc0c76583ab12edb58b2a162a3a7dbface0a265648b8b753a93a0564bfe4dc053d21cfb65f2a2e9dda1be91924bd97c10925cb5d2cc0eb3a32d02e6cbd4cfa1
- SSDEEP
  
  768:NFpQqvq6c0pTzylQU7bvvrx3qRZKhRxvONaShkGWypZCvi2:NFmqvq6dpPHU/vTx3mKhRxvO0/E6i
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2