565ac83b15ebef11d292838a4f8952181376db8c7bcfddab319de8720844e3e9 | Triage

Sharing

General

Target

565ac83b15ebef11d292838a4f8952181376db8c7bcfddab319de8720844e3e9
Size

116KB
Sample

221123-z1kldaec27
MD5

617baa80b021ff74881eb764c270ae83
SHA1

4beed297d423a09886d5871dc1f3837f9d81800b
SHA256

565ac83b15ebef11d292838a4f8952181376db8c7bcfddab319de8720844e3e9
SHA512

97c8e8b3824bb9631820f05040f01904d4f0f9b5558955cc2429dba5fdaf6f9ab5f03c6a89c97d9c3fc0cdad8ecd50eef6a224b57b520ab0ec6445991110cedf
SSDEEP

3072:UjXGgi+Dzwlau1H+ZkM7mzNEX85WB6Vi/8Op:oXGgzFuB/M7mzNEFB6Vy8w

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  565ac83b15ebef11d292838a4f8952181376db8c7bcfddab319de8720844e3e9
- Size
  
  116KB
- MD5
  
  617baa80b021ff74881eb764c270ae83
- SHA1
  
  4beed297d423a09886d5871dc1f3837f9d81800b
- SHA256
  
  565ac83b15ebef11d292838a4f8952181376db8c7bcfddab319de8720844e3e9
- SHA512
  
  97c8e8b3824bb9631820f05040f01904d4f0f9b5558955cc2429dba5fdaf6f9ab5f03c6a89c97d9c3fc0cdad8ecd50eef6a224b57b520ab0ec6445991110cedf
- SSDEEP
  
  3072:UjXGgi+Dzwlau1H+ZkM7mzNEX85WB6Vi/8Op:oXGgzFuB/M7mzNEFB6Vy8w
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2