f138e5fec4950ea23c92406def569e6f4ee8f3b4b583a3cc2b853dd11f47e1b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f138e5fec4950ea23c92406def569e6f4ee8f3b4b583a3cc2b853dd11f47e1b1
Size

3.4MB
Sample

221124-bvj6nahh86
MD5

156caae4cabf2fddc167c4706159bec8
SHA1

0e36e5f42cf03697290a16f8a0f39dcaefd46d79
SHA256

f138e5fec4950ea23c92406def569e6f4ee8f3b4b583a3cc2b853dd11f47e1b1
SHA512

054297665ada17b29e43f317e1f0627cb838bb0f508862ecb4b4fe64da0b8ed57b36bd9bcf45687cc113310506de4b2723762cf2a1069715021ac4bdf162d753
SSDEEP

49152:Sa1ISQus8/2Ge/5mMk1HvWpcnVcVyCDxl4KZKWCbquSVex1yrZO4:91ISQusLGKmMaHgcnbgxPKWCbMs1G

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  f138e5fec4950ea23c92406def569e6f4ee8f3b4b583a3cc2b853dd11f47e1b1
- Size
  
  3.4MB
- MD5
  
  156caae4cabf2fddc167c4706159bec8
- SHA1
  
  0e36e5f42cf03697290a16f8a0f39dcaefd46d79
- SHA256
  
  f138e5fec4950ea23c92406def569e6f4ee8f3b4b583a3cc2b853dd11f47e1b1
- SHA512
  
  054297665ada17b29e43f317e1f0627cb838bb0f508862ecb4b4fe64da0b8ed57b36bd9bcf45687cc113310506de4b2723762cf2a1069715021ac4bdf162d753
- SSDEEP
  
  49152:Sa1ISQus8/2Ge/5mMk1HvWpcnVcVyCDxl4KZKWCbquSVex1yrZO4:91ISQusLGKmMaHgcnbgxPKWCbMs1G
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2