f5fd2d0688735734486021fb08825c2acd8d0d313692d4773a6c0d03ef16009d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5fd2d0688735734486021fb08825c2acd8d0d313692d4773a6c0d03ef16009d
Size

180KB
Sample

221030-tw6edsahbj
MD5

83557c038b08d429b82a7ba8819dd120
SHA1

297f7a0b7e6c1a0218c3035ce19bc3a9be17452a
SHA256

f5fd2d0688735734486021fb08825c2acd8d0d313692d4773a6c0d03ef16009d
SHA512

c1c7d130d67ba1473e105b9773ec25cfbd463ce899ac46ee7d81f52843c8eb4da13d25c67909003bb7c2ed99877bc5f8e75d916a424b16f707591f7757549160
SSDEEP

3072:VRjeO/RTUxsdVOLAj3khSXK1DkTAqkqX1x+yC3B2TxtZIL7th8O8OvqM0:VRjeVAj3QSXK1Dk5kqy3ETlIXb8O8Oyj

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  f5fd2d0688735734486021fb08825c2acd8d0d313692d4773a6c0d03ef16009d
- Size
  
  180KB
- MD5
  
  83557c038b08d429b82a7ba8819dd120
- SHA1
  
  297f7a0b7e6c1a0218c3035ce19bc3a9be17452a
- SHA256
  
  f5fd2d0688735734486021fb08825c2acd8d0d313692d4773a6c0d03ef16009d
- SHA512
  
  c1c7d130d67ba1473e105b9773ec25cfbd463ce899ac46ee7d81f52843c8eb4da13d25c67909003bb7c2ed99877bc5f8e75d916a424b16f707591f7757549160
- SSDEEP
  
  3072:VRjeO/RTUxsdVOLAj3khSXK1DkTAqkqX1x+yC3B2TxtZIL7th8O8OvqM0:VRjeVAj3QSXK1Dk5kqy3ETlIXb8O8Oyj
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2