fea2b32a3293d421d3b3ea4cf3a92af21c61d7eaf412e77bfc1e5a75b1b6dad8 | Triage

Sharing

General

Target

fea2b32a3293d421d3b3ea4cf3a92af21c61d7eaf412e77bfc1e5a75b1b6dad8
Size

160KB
Sample

221106-tyd3xsbca4
MD5

08fef7235f5bfc0357dd833725744550
SHA1

a7e759406bf435fac15bcc88652450535294422e
SHA256

fea2b32a3293d421d3b3ea4cf3a92af21c61d7eaf412e77bfc1e5a75b1b6dad8
SHA512

1912de0f0f9c51de66099c0f471532686037e99eae7c8261a04089de35cfae23002d06e382c0b58de4c546de6c0e0bec1984599075b40d7aadaaff4cd22e68ef
SSDEEP

3072:kdWiWC+toFTUYnFfEtpXzR6IyDybv1TxtqtOMiUfEnOifP:WWCoobczXzdbdTCO9Oa

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  fea2b32a3293d421d3b3ea4cf3a92af21c61d7eaf412e77bfc1e5a75b1b6dad8
- Size
  
  160KB
- MD5
  
  08fef7235f5bfc0357dd833725744550
- SHA1
  
  a7e759406bf435fac15bcc88652450535294422e
- SHA256
  
  fea2b32a3293d421d3b3ea4cf3a92af21c61d7eaf412e77bfc1e5a75b1b6dad8
- SHA512
  
  1912de0f0f9c51de66099c0f471532686037e99eae7c8261a04089de35cfae23002d06e382c0b58de4c546de6c0e0bec1984599075b40d7aadaaff4cd22e68ef
- SSDEEP
  
  3072:kdWiWC+toFTUYnFfEtpXzR6IyDybv1TxtqtOMiUfEnOifP:WWCoobczXzdbdTCO9Oa
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2