0b7f4c6c96f6b266abd05d8c211f41100ec736b760e1a7d6e0eacf3e3de05e11 | Triage

Sharing

General

Target

0b7f4c6c96f6b266abd05d8c211f41100ec736b760e1a7d6e0eacf3e3de05e11
Size

157KB
Sample

221029-kjh9naabgk
MD5

bb39f29fad85db12d9cf7195da0e1bfe
SHA1

044e83c7f320efffd617f4542bf6c9f62feb0221
SHA256

0b7f4c6c96f6b266abd05d8c211f41100ec736b760e1a7d6e0eacf3e3de05e11
SHA512

55d2096e39e4cf2fc19afce3c2e1becbf31da602e7c2a67af0a8ad23803bc2cb3ee5795e36f4a5f5f63c59a43dae392ca42cdef9727181a453957fffbe25374f
SSDEEP

3072:Wy277Ci2HMm3nQuTz5U0Ofr2AUx4bzWKeH3tMCmzsaz:Wy27mi2Hj3Qg112rhUxl/3thEse

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  0b7f4c6c96f6b266abd05d8c211f41100ec736b760e1a7d6e0eacf3e3de05e11
- Size
  
  157KB
- MD5
  
  bb39f29fad85db12d9cf7195da0e1bfe
- SHA1
  
  044e83c7f320efffd617f4542bf6c9f62feb0221
- SHA256
  
  0b7f4c6c96f6b266abd05d8c211f41100ec736b760e1a7d6e0eacf3e3de05e11
- SHA512
  
  55d2096e39e4cf2fc19afce3c2e1becbf31da602e7c2a67af0a8ad23803bc2cb3ee5795e36f4a5f5f63c59a43dae392ca42cdef9727181a453957fffbe25374f
- SSDEEP
  
  3072:Wy277Ci2HMm3nQuTz5U0Ofr2AUx4bzWKeH3tMCmzsaz:Wy27mi2Hj3Qg112rhUxl/3thEse
Score

10^/10

evasion
- Modifies security service
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2