d87bbe5ed22bae5a2c4c083e2d822ed5e0a8a6fdda1c07cac81aa6013b72cd3f | Triage

Sharing

General

Target

d87bbe5ed22bae5a2c4c083e2d822ed5e0a8a6fdda1c07cac81aa6013b72cd3f
Size

173KB
Sample

221020-3bj54aaghl
MD5

794512d25a0866079176d5eb2b377b9e
SHA1

e3c49ffdb6f5d4f6a26581abc0fe75dcbe1bd484
SHA256

d87bbe5ed22bae5a2c4c083e2d822ed5e0a8a6fdda1c07cac81aa6013b72cd3f
SHA512

ac76ac43ff1ea2c016e50f959f88cbfec698843aa307b25f3095baa5b7dc77a1e92c1f7b5534fb22950349e50aaedddf4af0fee39c69ac99a63a82312c608fad
SSDEEP

3072:CFpQQDO+41YmbQyRPkADIRnrxSuyJ1gjuYUEHUE2YKHMq8gus0pKw8H3:CDQ1VY7yScIRouWgi/LDZxH3

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  d87bbe5ed22bae5a2c4c083e2d822ed5e0a8a6fdda1c07cac81aa6013b72cd3f
- Size
  
  173KB
- MD5
  
  794512d25a0866079176d5eb2b377b9e
- SHA1
  
  e3c49ffdb6f5d4f6a26581abc0fe75dcbe1bd484
- SHA256
  
  d87bbe5ed22bae5a2c4c083e2d822ed5e0a8a6fdda1c07cac81aa6013b72cd3f
- SHA512
  
  ac76ac43ff1ea2c016e50f959f88cbfec698843aa307b25f3095baa5b7dc77a1e92c1f7b5534fb22950349e50aaedddf4af0fee39c69ac99a63a82312c608fad
- SSDEEP
  
  3072:CFpQQDO+41YmbQyRPkADIRnrxSuyJ1gjuYUEHUE2YKHMq8gus0pKw8H3:CDQ1VY7yScIRouWgi/LDZxH3
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2