304133ec21c667680aab416e5146f36aa9bf01e758b157618c24a94f9b83c72a | Triage

Sharing

General

Target

304133ec21c667680aab416e5146f36aa9bf01e758b157618c24a94f9b83c72a
Size

144KB
Sample

221020-ngtt6abfd4
MD5

90142e2ea04757a218adfe6153ecbaa0
SHA1

4e382e3c9ec68954e8ff6acbd2fe5e34c9603829
SHA256

304133ec21c667680aab416e5146f36aa9bf01e758b157618c24a94f9b83c72a
SHA512

9a066f28eea058ad9480c5de2ca58245286fc07fcb0684274ad1749335358276b4c53f9cd315bcae1b59bcb063d05519b8dd70b3ecc4984432ea05be3de1aac6
SSDEEP

3072:hbARxFAEM82n7GC2jctoKpsusT2rEFpeoIUpZl1I7j:JNX8I0jct5rEJdpPO

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  304133ec21c667680aab416e5146f36aa9bf01e758b157618c24a94f9b83c72a
- Size
  
  144KB
- MD5
  
  90142e2ea04757a218adfe6153ecbaa0
- SHA1
  
  4e382e3c9ec68954e8ff6acbd2fe5e34c9603829
- SHA256
  
  304133ec21c667680aab416e5146f36aa9bf01e758b157618c24a94f9b83c72a
- SHA512
  
  9a066f28eea058ad9480c5de2ca58245286fc07fcb0684274ad1749335358276b4c53f9cd315bcae1b59bcb063d05519b8dd70b3ecc4984432ea05be3de1aac6
- SSDEEP
  
  3072:hbARxFAEM82n7GC2jctoKpsusT2rEFpeoIUpZl1I7j:JNX8I0jct5rEJdpPO
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2