9467240e933c19bf22b30a22554ca89d6cd991f3a69569783c4b9cda4cb978f9 | Triage

Sharing

General

Target

9467240e933c19bf22b30a22554ca89d6cd991f3a69569783c4b9cda4cb978f9
Size

416KB
Sample

221124-1zkqescc26
MD5

30b8bd459b5abcf9d67aca1aa55cefe5
SHA1

4d740587ec2d6b644b5c4be1fa60efceb39154d3
SHA256

9467240e933c19bf22b30a22554ca89d6cd991f3a69569783c4b9cda4cb978f9
SHA512

39b06b09e5610b6b04415b69cfa4661ffdf37b11d10e3d692f8658b79f13d7772a698e9db9f3b58502a8201fed9b393d05040808d85cca0b7f82ac13ac2a0237
SSDEEP

12288:/C2UuagwQBLutty5lnLjJ072N+Je6pSW5+:6r7gwILOc5lnnJ0rJXV5

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  9467240e933c19bf22b30a22554ca89d6cd991f3a69569783c4b9cda4cb978f9
- Size
  
  416KB
- MD5
  
  30b8bd459b5abcf9d67aca1aa55cefe5
- SHA1
  
  4d740587ec2d6b644b5c4be1fa60efceb39154d3
- SHA256
  
  9467240e933c19bf22b30a22554ca89d6cd991f3a69569783c4b9cda4cb978f9
- SHA512
  
  39b06b09e5610b6b04415b69cfa4661ffdf37b11d10e3d692f8658b79f13d7772a698e9db9f3b58502a8201fed9b393d05040808d85cca0b7f82ac13ac2a0237
- SSDEEP
  
  12288:/C2UuagwQBLutty5lnLjJ072N+Je6pSW5+:6r7gwILOc5lnnJ0rJXV5
Score

10^/10

evasion persistence
- Modifies firewall policy service
  evasion
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

evasionpersistence