b884d5e88ca36375e63c21a34cf26a5d2b09762e585cfb2048671f5c1bb4e65f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b884d5e88ca36375e63c21a34cf26a5d2b09762e585cfb2048671f5c1bb4e65f
Size

827KB
Sample

221020-j4vyhsdbf5
MD5

4b323170978c40a100e213da52a60b00
SHA1

4ca1d7d8f73f7540d5528954c994d3401b18c525
SHA256

b884d5e88ca36375e63c21a34cf26a5d2b09762e585cfb2048671f5c1bb4e65f
SHA512

4677c0885319ff3372e276fff28dcd166534b5b72466c8fa53adc49579de1aed671f88e77b95214dca278abdd6100f14c5e729930cd4f20a53c5432bfcb478bc
SSDEEP

24576:aw26ynDkgoEvVfWlsadQFR4T5jj5pgzjAkq:aJJHnuPqoF/gXlq

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  b884d5e88ca36375e63c21a34cf26a5d2b09762e585cfb2048671f5c1bb4e65f
- Size
  
  827KB
- MD5
  
  4b323170978c40a100e213da52a60b00
- SHA1
  
  4ca1d7d8f73f7540d5528954c994d3401b18c525
- SHA256
  
  b884d5e88ca36375e63c21a34cf26a5d2b09762e585cfb2048671f5c1bb4e65f
- SHA512
  
  4677c0885319ff3372e276fff28dcd166534b5b72466c8fa53adc49579de1aed671f88e77b95214dca278abdd6100f14c5e729930cd4f20a53c5432bfcb478bc
- SSDEEP
  
  24576:aw26ynDkgoEvVfWlsadQFR4T5jj5pgzjAkq:aJJHnuPqoF/gXlq
Score

10^/10

evasion trojan
- Windows security bypass
  evasion trojan
- Drops file in Drivers directory
- Executes dropped EXE
- Modifies Windows Firewall
  evasion
- Loads dropped DLL
- Windows security modification
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2