a65d8777b99011aef2ff420419200daa94e8d5941c62b927930c275f6aee4710 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a65d8777b99011aef2ff420419200daa94e8d5941c62b927930c275f6aee4710
Size

79KB
Sample

221125-z7ptnsah3z
MD5

5285159dbddddd5f11b540e47bf8a22b
SHA1

1b29522060ef652bb9943220b30e950dd7e3d00d
SHA256

a65d8777b99011aef2ff420419200daa94e8d5941c62b927930c275f6aee4710
SHA512

b39d17f43bf7991f2c805c5edb0c1d72511d5d41aeb91fa7ce6d0c19aafb5ea4bf1feb5343b555a4d8d5532ded0f0c4df09dbba1ca866d18d105be67e64652bb
SSDEEP

1536:9c2ijkPkSU57oJdIEMa8KN8E1r3JctN1s:9cei0B3JctNe

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  a65d8777b99011aef2ff420419200daa94e8d5941c62b927930c275f6aee4710
- Size
  
  79KB
- MD5
  
  5285159dbddddd5f11b540e47bf8a22b
- SHA1
  
  1b29522060ef652bb9943220b30e950dd7e3d00d
- SHA256
  
  a65d8777b99011aef2ff420419200daa94e8d5941c62b927930c275f6aee4710
- SHA512
  
  b39d17f43bf7991f2c805c5edb0c1d72511d5d41aeb91fa7ce6d0c19aafb5ea4bf1feb5343b555a4d8d5532ded0f0c4df09dbba1ca866d18d105be67e64652bb
- SSDEEP
  
  1536:9c2ijkPkSU57oJdIEMa8KN8E1r3JctN1s:9cei0B3JctNe
Score

10^/10

evasion persistence
- Modifies firewall policy service
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence