0b592f8fa27773427e81fcce883e8a57737973e34567122113ac72c5d616e44d | Triage

Sharing

General

Target

0b592f8fa27773427e81fcce883e8a57737973e34567122113ac72c5d616e44d
Size

87KB
Sample

221123-lzzr1scg27
MD5

e7fceebd11f69a00d6ec2856e2fe1835
SHA1

f8016b412cdb8c6d6f3bb74e85b59ed0ff203db8
SHA256

0b592f8fa27773427e81fcce883e8a57737973e34567122113ac72c5d616e44d
SHA512

8b77150607142abe5bdc40f4e578a624adfcf8ec4c02df8fe9d9e1083095c0a259d6eb586ac98c52c4a69f87982df0f9b452378a87f983d128e43cf72dc49a64
SSDEEP

1536:OWoWmsjGwdQe2ZBslGwery5fGpb1clN5Vjd3TLU5fgXRgglg2Rvw:wWmsuZBssw6LcLdf8fgBgglg2Rw

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  0b592f8fa27773427e81fcce883e8a57737973e34567122113ac72c5d616e44d
- Size
  
  87KB
- MD5
  
  e7fceebd11f69a00d6ec2856e2fe1835
- SHA1
  
  f8016b412cdb8c6d6f3bb74e85b59ed0ff203db8
- SHA256
  
  0b592f8fa27773427e81fcce883e8a57737973e34567122113ac72c5d616e44d
- SHA512
  
  8b77150607142abe5bdc40f4e578a624adfcf8ec4c02df8fe9d9e1083095c0a259d6eb586ac98c52c4a69f87982df0f9b452378a87f983d128e43cf72dc49a64
- SSDEEP
  
  1536:OWoWmsjGwdQe2ZBslGwery5fGpb1clN5Vjd3TLU5fgXRgglg2Rvw:wWmsuZBssw6LcLdf8fgBgglg2Rw
Score

8^/10

evasion
- Executes dropped EXE
- Modifies Windows Firewall
  evasion
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2