3ea99dab586404f4fd5ec62b4e42352d86949c81e96215ec83a473ed0e81333d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ea99dab586404f4fd5ec62b4e42352d86949c81e96215ec83a473ed0e81333d
Size

486KB
Sample

221030-1cm72abeh4
MD5

9253bd42bed24d42646e7d23df1e3960
SHA1

5323bb339eb5b710dbfc8b8991069a8eeab88192
SHA256

3ea99dab586404f4fd5ec62b4e42352d86949c81e96215ec83a473ed0e81333d
SHA512

3e6f41fbb9cd498af6741aaf83b21ed96da4809926668c8b28e00d14ef583f8f0f454ccc2789b4bbcb5b903889561f20ff855ef5038212cc768cd4728fed48c7
SSDEEP

3072:5hRx1q315oF8opcnD1hOOrWGzN2lcR2u8JnxIU4p+X+xFFCcll3H3rH3XD7Inm+s:/UF5oXpcFb5DRsNxIU4peR4S6VNsdh8

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  3ea99dab586404f4fd5ec62b4e42352d86949c81e96215ec83a473ed0e81333d
- Size
  
  486KB
- MD5
  
  9253bd42bed24d42646e7d23df1e3960
- SHA1
  
  5323bb339eb5b710dbfc8b8991069a8eeab88192
- SHA256
  
  3ea99dab586404f4fd5ec62b4e42352d86949c81e96215ec83a473ed0e81333d
- SHA512
  
  3e6f41fbb9cd498af6741aaf83b21ed96da4809926668c8b28e00d14ef583f8f0f454ccc2789b4bbcb5b903889561f20ff855ef5038212cc768cd4728fed48c7
- SSDEEP
  
  3072:5hRx1q315oF8opcnD1hOOrWGzN2lcR2u8JnxIU4p+X+xFFCcll3H3rH3XD7Inm+s:/UF5oXpcFb5DRsNxIU4peR4S6VNsdh8
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2