efc9901485bc187c9c37adeafbba51d80245a9151c27f74b2d536b8eed0d0416 | Triage

Sharing

General

Target

efc9901485bc187c9c37adeafbba51d80245a9151c27f74b2d536b8eed0d0416
Size

19KB
Sample

221011-g43bgsabfk
MD5

65614520462964ab066d287dd71a8f45
SHA1

45b02df7dcae799a69e84d46be5b8ed220a041c6
SHA256

efc9901485bc187c9c37adeafbba51d80245a9151c27f74b2d536b8eed0d0416
SHA512

804ab51763bcf09ccab5d0992aa25a1d9f7a9613d84d3234dd8cae4468c566380cb5dd8335adf4603dafbb6d4c5a29357e50b514bdc4b4041c7f2953087e11c3
SSDEEP

384:LOr5NKZ2S8ANHN+MxzBHEZG8uR5pHEkBW8Vj59izEvkYYOvq:ir5NjZ9uq0W8RqEvS9

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  efc9901485bc187c9c37adeafbba51d80245a9151c27f74b2d536b8eed0d0416
- Size
  
  19KB
- MD5
  
  65614520462964ab066d287dd71a8f45
- SHA1
  
  45b02df7dcae799a69e84d46be5b8ed220a041c6
- SHA256
  
  efc9901485bc187c9c37adeafbba51d80245a9151c27f74b2d536b8eed0d0416
- SHA512
  
  804ab51763bcf09ccab5d0992aa25a1d9f7a9613d84d3234dd8cae4468c566380cb5dd8335adf4603dafbb6d4c5a29357e50b514bdc4b4041c7f2953087e11c3
- SSDEEP
  
  384:LOr5NKZ2S8ANHN+MxzBHEZG8uR5pHEkBW8Vj59izEvkYYOvq:ir5NjZ9uq0W8RqEvS9
Score

10^/10

evasion persistence
- Modifies firewall policy service
  evasion
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence