da5b631e9ea0b34a4d9d65ced811f1df02fa0f2bb6c3ad542e72fa33985cbe97 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da5b631e9ea0b34a4d9d65ced811f1df02fa0f2bb6c3ad542e72fa33985cbe97
Size

99KB
Sample

221129-hdj8naea76
MD5

4e9272032c6cc02ca92542cef8f11081
SHA1

1629e56c285714bb4c83126d7b7538ce7d70126b
SHA256

da5b631e9ea0b34a4d9d65ced811f1df02fa0f2bb6c3ad542e72fa33985cbe97
SHA512

35c6117ad648760d35daa83e3bcdebf3e742af6d0c2ed170c402c8d2e16bcc4b0c943cce32c8879ddee7df53c12d00f992ad36d55730c4ca1537f55437dc1d1a
SSDEEP

1536:JOKzyqNQuJiYjTX5RzPO4HE76U82LQ0SzipMqKL+Liltjx+sqv8fHv53llKPZ:YKzyqN11D5RzPO4HE7N8CSikLx1XhlC

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  da5b631e9ea0b34a4d9d65ced811f1df02fa0f2bb6c3ad542e72fa33985cbe97
- Size
  
  99KB
- MD5
  
  4e9272032c6cc02ca92542cef8f11081
- SHA1
  
  1629e56c285714bb4c83126d7b7538ce7d70126b
- SHA256
  
  da5b631e9ea0b34a4d9d65ced811f1df02fa0f2bb6c3ad542e72fa33985cbe97
- SHA512
  
  35c6117ad648760d35daa83e3bcdebf3e742af6d0c2ed170c402c8d2e16bcc4b0c943cce32c8879ddee7df53c12d00f992ad36d55730c4ca1537f55437dc1d1a
- SSDEEP
  
  1536:JOKzyqNQuJiYjTX5RzPO4HE76U82LQ0SzipMqKL+Liltjx+sqv8fHv53llKPZ:YKzyqN11D5RzPO4HE7N8CSikLx1XhlC
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2