36a4aed391d4870bcf3a12eb042b4994180c37e482f905ce8d2bc59de44f9779 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36a4aed391d4870bcf3a12eb042b4994180c37e482f905ce8d2bc59de44f9779
Size

199KB
Sample

221106-wlrjlageer
MD5

0c8cdbbea7e4efb0b38c542aa45c4c00
SHA1

3e341803f332be9da79285b99b8948bf7aac44c3
SHA256

36a4aed391d4870bcf3a12eb042b4994180c37e482f905ce8d2bc59de44f9779
SHA512

1fa7b09be61bf83c5aa7f8a99af09e085ce8feca9dc167ffff5b7b8e63d0cc3fb8bd4fe3581f8bd1c9630c79c400b82ce3d839e89af5a2198119c766e67689c1
SSDEEP

3072:VML8/lcgK7XaWWwm6TY+IB28rl1dc0LmvqCI+lxrTyTsclJnFn:IwlcgK7nf7mz4vqCzlx6dJn5

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  36a4aed391d4870bcf3a12eb042b4994180c37e482f905ce8d2bc59de44f9779
- Size
  
  199KB
- MD5
  
  0c8cdbbea7e4efb0b38c542aa45c4c00
- SHA1
  
  3e341803f332be9da79285b99b8948bf7aac44c3
- SHA256
  
  36a4aed391d4870bcf3a12eb042b4994180c37e482f905ce8d2bc59de44f9779
- SHA512
  
  1fa7b09be61bf83c5aa7f8a99af09e085ce8feca9dc167ffff5b7b8e63d0cc3fb8bd4fe3581f8bd1c9630c79c400b82ce3d839e89af5a2198119c766e67689c1
- SSDEEP
  
  3072:VML8/lcgK7XaWWwm6TY+IB28rl1dc0LmvqCI+lxrTyTsclJnFn:IwlcgK7nf7mz4vqCzlx6dJn5
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2