ecb453ec21f8d320966a9121f9e97fd1b7b10c14009bc8063e24f6a832a2f9a8 | Triage

Sharing

General

Target

ecb453ec21f8d320966a9121f9e97fd1b7b10c14009bc8063e24f6a832a2f9a8
Size

216KB
Sample

221107-1433kabhf7
MD5

02968ca18b63930b6cef34e9694e68f0
SHA1

6c2d392024a6d859d1799a42c82f163e496ddbcf
SHA256

ecb453ec21f8d320966a9121f9e97fd1b7b10c14009bc8063e24f6a832a2f9a8
SHA512

efcc7fdc85c9506b482a4e437f3c655ea0f9481a8c9a793491f04101819a84d986eb4b5f8f9485da1d8a5773af9cdd14b9f1cc2e5207a7d8d57d702b1d2566c3
SSDEEP

3072:dOcORE0B7T4S+oTcB/IhB2Xb1BcnzmpMfV0DCIwleMSBQ7T5D78Uix:eRE0BfZ+YIXJBqmpM2DKSuh

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  ecb453ec21f8d320966a9121f9e97fd1b7b10c14009bc8063e24f6a832a2f9a8
- Size
  
  216KB
- MD5
  
  02968ca18b63930b6cef34e9694e68f0
- SHA1
  
  6c2d392024a6d859d1799a42c82f163e496ddbcf
- SHA256
  
  ecb453ec21f8d320966a9121f9e97fd1b7b10c14009bc8063e24f6a832a2f9a8
- SHA512
  
  efcc7fdc85c9506b482a4e437f3c655ea0f9481a8c9a793491f04101819a84d986eb4b5f8f9485da1d8a5773af9cdd14b9f1cc2e5207a7d8d57d702b1d2566c3
- SSDEEP
  
  3072:dOcORE0B7T4S+oTcB/IhB2Xb1BcnzmpMfV0DCIwleMSBQ7T5D78Uix:eRE0BfZ+YIXJBqmpM2DKSuh
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2