3729e11b37b1d9bbbed4a48b0280b5e37feee694485bb5ad7e37b13c5054806c | Triage

Sharing

General

Target

3729e11b37b1d9bbbed4a48b0280b5e37feee694485bb5ad7e37b13c5054806c
Size

1.2MB
Sample

221030-qg7gcsdabj
MD5

5ae8e73402852124ab3a71c58d359d50
SHA1

94dff99beb0d0fc55ac33e913c714402bcd1b252
SHA256

3729e11b37b1d9bbbed4a48b0280b5e37feee694485bb5ad7e37b13c5054806c
SHA512

e244f91061932dfd2d1c9adfde57d5417681a7a4ad3b661432b8601f571dbe390c1d8f73ca856ae49b60031df0f29bb8caf2ac94060600b2d1d9eae63b8d8971
SSDEEP

24576:Yf7JHrKwBGwsJWARhuc7UgCYykGIwQ0xPtOlMZm9OneqYdpobTYgqXLXYA:OprKwBGqA/ujpfQKPtsMYoeZAYfbZ

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  3729e11b37b1d9bbbed4a48b0280b5e37feee694485bb5ad7e37b13c5054806c
- Size
  
  1.2MB
- MD5
  
  5ae8e73402852124ab3a71c58d359d50
- SHA1
  
  94dff99beb0d0fc55ac33e913c714402bcd1b252
- SHA256
  
  3729e11b37b1d9bbbed4a48b0280b5e37feee694485bb5ad7e37b13c5054806c
- SHA512
  
  e244f91061932dfd2d1c9adfde57d5417681a7a4ad3b661432b8601f571dbe390c1d8f73ca856ae49b60031df0f29bb8caf2ac94060600b2d1d9eae63b8d8971
- SSDEEP
  
  24576:Yf7JHrKwBGwsJWARhuc7UgCYykGIwQ0xPtOlMZm9OneqYdpobTYgqXLXYA:OprKwBGqA/ujpfQKPtsMYoeZAYfbZ
Score

10^/10

evasion trojan
- Windows security bypass
  evasion trojan
- Drops file in Drivers directory
- Executes dropped EXE
- Modifies Windows Firewall
  evasion
- Loads dropped DLL
- Windows security modification
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2