fc9f4c4e1f7effed71d69473f1cae101aeed8f638ad9221277f091a74c84f861 | Triage

Sharing

General

Target

fc9f4c4e1f7effed71d69473f1cae101aeed8f638ad9221277f091a74c84f861
Size

72KB
Sample

221011-gy7zsahff7
MD5

625f4921396fd4502f6a6196f5a54e20
SHA1

931507cd698eeb74e6d39dfc4482d0b6c9bd1eb8
SHA256

fc9f4c4e1f7effed71d69473f1cae101aeed8f638ad9221277f091a74c84f861
SHA512

7b71b737c565198fa0189cd8f9dac7977f70adb60da73a3017a730a2aff718588c75c92a3236f0cca5a89c4644661cf56ad837b511248cc0d7024bf23eb4bbf9
SSDEEP

1536:oqMg10vey1tb9lJlRG6M17RDg97GdGS7Me39n0pJ4Y39ORXdvyqH9Ov:5A1t46Mvg0GSYujQyww9Ov

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  fc9f4c4e1f7effed71d69473f1cae101aeed8f638ad9221277f091a74c84f861
- Size
  
  72KB
- MD5
  
  625f4921396fd4502f6a6196f5a54e20
- SHA1
  
  931507cd698eeb74e6d39dfc4482d0b6c9bd1eb8
- SHA256
  
  fc9f4c4e1f7effed71d69473f1cae101aeed8f638ad9221277f091a74c84f861
- SHA512
  
  7b71b737c565198fa0189cd8f9dac7977f70adb60da73a3017a730a2aff718588c75c92a3236f0cca5a89c4644661cf56ad837b511248cc0d7024bf23eb4bbf9
- SSDEEP
  
  1536:oqMg10vey1tb9lJlRG6M17RDg97GdGS7Me39n0pJ4Y39ORXdvyqH9Ov:5A1t46Mvg0GSYujQyww9Ov
Score

8^/10

evasion
- Executes dropped EXE
- Modifies Windows Firewall
  evasion
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2