cb9a1f206d935de0c78f39cf776818580821c4f6be76bdb55e3403622edd619b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb9a1f206d935de0c78f39cf776818580821c4f6be76bdb55e3403622edd619b
Size

70KB
Sample

221020-czmm1sagak
MD5

81746135f30f5c3ce19bc746d60cfc70
SHA1

44b45df1d6f6e7b8f4e55a62ca14a6a0d4ab4352
SHA256

cb9a1f206d935de0c78f39cf776818580821c4f6be76bdb55e3403622edd619b
SHA512

a217d7fd9160d828045fd1a01e0b6525b95ee745927abf2bd38cecb6e9c95b38fd648fd1a5df033890e2ea97b7a2b602f675b77c1be288b2322649376d5b4aac
SSDEEP

768:RshvXDMFvm59eQ/hAsr2ZbzfbAvH3ba2PcsKtgARhUsz6L2mk2tsVoPVBFQDE1bm:qvX0vm5bKZbfAvH3zUft3uymb+SviDk

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  cb9a1f206d935de0c78f39cf776818580821c4f6be76bdb55e3403622edd619b
- Size
  
  70KB
- MD5
  
  81746135f30f5c3ce19bc746d60cfc70
- SHA1
  
  44b45df1d6f6e7b8f4e55a62ca14a6a0d4ab4352
- SHA256
  
  cb9a1f206d935de0c78f39cf776818580821c4f6be76bdb55e3403622edd619b
- SHA512
  
  a217d7fd9160d828045fd1a01e0b6525b95ee745927abf2bd38cecb6e9c95b38fd648fd1a5df033890e2ea97b7a2b602f675b77c1be288b2322649376d5b4aac
- SSDEEP
  
  768:RshvXDMFvm59eQ/hAsr2ZbzfbAvH3ba2PcsKtgARhUsz6L2mk2tsVoPVBFQDE1bm:qvX0vm5bKZbfAvH3zUft3uymb+SviDk
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2