5bf2d3c952a202d97c7bf45ed8ccdf914ab21bd6a8e5b687a568df2421060212 | Triage

Sharing

General

Target

5bf2d3c952a202d97c7bf45ed8ccdf914ab21bd6a8e5b687a568df2421060212
Size

104KB
Sample

221020-3f8n9abbcj
MD5

720b0cedc27eeda5b157d8aa545c7640
SHA1

88dd55ece96cecdd203a0c1e9ca8f80946b305ff
SHA256

5bf2d3c952a202d97c7bf45ed8ccdf914ab21bd6a8e5b687a568df2421060212
SHA512

add1a9f0c8c7389c0f0f7decb3ff26e0938969d9660dedd3094af1089c6b9f5addc7c1d21eca19c0b7597399aba3b8748958b15cff943d6ae7a910e90b3763ca
SSDEEP

3072:STe4LbdbC+2kYtEFCAipOLq7y7e6r7roKGD1w:2dbC+2kY+FP7e6r7k51

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  5bf2d3c952a202d97c7bf45ed8ccdf914ab21bd6a8e5b687a568df2421060212
- Size
  
  104KB
- MD5
  
  720b0cedc27eeda5b157d8aa545c7640
- SHA1
  
  88dd55ece96cecdd203a0c1e9ca8f80946b305ff
- SHA256
  
  5bf2d3c952a202d97c7bf45ed8ccdf914ab21bd6a8e5b687a568df2421060212
- SHA512
  
  add1a9f0c8c7389c0f0f7decb3ff26e0938969d9660dedd3094af1089c6b9f5addc7c1d21eca19c0b7597399aba3b8748958b15cff943d6ae7a910e90b3763ca
- SSDEEP
  
  3072:STe4LbdbC+2kYtEFCAipOLq7y7e6r7roKGD1w:2dbC+2kY+FP7e6r7k51
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2