d7e470d748c375f02f25e6d526f1f0f6760cf59f3cce62973cc5a4bfba1a14d9 | Triage

Sharing

General

Target

d7e470d748c375f02f25e6d526f1f0f6760cf59f3cce62973cc5a4bfba1a14d9
Size

217KB
Sample

221123-vmaf2acc8w
MD5

445a9be24392ff5b6fe0e03c4ee0a590
SHA1

692c36b9c21b80408b2c1371c40754950815178b
SHA256

d7e470d748c375f02f25e6d526f1f0f6760cf59f3cce62973cc5a4bfba1a14d9
SHA512

63196c6bd007640c1f47636795829a7609ec319432952b0b17321f108bb6ab577b6e9e262c0dd68e1bd61e1beadec4ebb5dc7e79a9f7eecd2c5116b38bc18d3d
SSDEEP

3072:oDahPBarKpbqSAhVbhDIqfv51zcigzVgpzOPiMW:zhPBarKpY9v5t+Qz

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  d7e470d748c375f02f25e6d526f1f0f6760cf59f3cce62973cc5a4bfba1a14d9
- Size
  
  217KB
- MD5
  
  445a9be24392ff5b6fe0e03c4ee0a590
- SHA1
  
  692c36b9c21b80408b2c1371c40754950815178b
- SHA256
  
  d7e470d748c375f02f25e6d526f1f0f6760cf59f3cce62973cc5a4bfba1a14d9
- SHA512
  
  63196c6bd007640c1f47636795829a7609ec319432952b0b17321f108bb6ab577b6e9e262c0dd68e1bd61e1beadec4ebb5dc7e79a9f7eecd2c5116b38bc18d3d
- SSDEEP
  
  3072:oDahPBarKpbqSAhVbhDIqfv51zcigzVgpzOPiMW:zhPBarKpY9v5t+Qz
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2