3c6b660918a24a62772fe016ec4531ec8750e6b8f9195d5c4bf902868c9a87f0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3c6b660918a24a62772fe016ec4531ec8750e6b8f9195d5c4bf902868c9a87f0
Size

834KB
Sample

221011-jvevyadaf7
MD5

5bae3e4a5dc8a9f4196e25682e2717d0
SHA1

38288154296e2efd3beb4c4775809200b87ffb80
SHA256

3c6b660918a24a62772fe016ec4531ec8750e6b8f9195d5c4bf902868c9a87f0
SHA512

3ba0f2fd9de6c9eaea94640bf67816c4a914460a69578ff3bd3c84db0e88753aed367695809c71958953352e52a17f3ad8702a99482a023bd3425acf419cba2a
SSDEEP

24576:VsO5HqwFQcggPtwr/Rhzhyti5nj7xlUKmPoWC6hZd7:RALVyO7xmTw6N

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  3c6b660918a24a62772fe016ec4531ec8750e6b8f9195d5c4bf902868c9a87f0
- Size
  
  834KB
- MD5
  
  5bae3e4a5dc8a9f4196e25682e2717d0
- SHA1
  
  38288154296e2efd3beb4c4775809200b87ffb80
- SHA256
  
  3c6b660918a24a62772fe016ec4531ec8750e6b8f9195d5c4bf902868c9a87f0
- SHA512
  
  3ba0f2fd9de6c9eaea94640bf67816c4a914460a69578ff3bd3c84db0e88753aed367695809c71958953352e52a17f3ad8702a99482a023bd3425acf419cba2a
- SSDEEP
  
  24576:VsO5HqwFQcggPtwr/Rhzhyti5nj7xlUKmPoWC6hZd7:RALVyO7xmTw6N
Score

10^/10

evasion trojan
- Windows security bypass
  evasion trojan
- Drops file in Drivers directory
- Executes dropped EXE
- Modifies Windows Firewall
  evasion
- Loads dropped DLL
- Windows security modification
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2