ac1336be026c33c2653a7106e7781a1a0b6593173b5c97b091f60af51f9b9d4a | Triage

Sharing

General

Target

ac1336be026c33c2653a7106e7781a1a0b6593173b5c97b091f60af51f9b9d4a
Size

516KB
Sample

221203-zcp6ysgg6z
MD5

45abdf6f2f3367a7239e75b6f24335de
SHA1

dfbd21d6124ceb24f93ec786c40cf49a8bf434d7
SHA256

ac1336be026c33c2653a7106e7781a1a0b6593173b5c97b091f60af51f9b9d4a
SHA512

fbe2f5fb6869fe16c78e6858ab902975e5eeaba06dc7bae37ab30c18d5dc0f61c3a6f9dfeef9f8e708a3e6ed927011a9d62cf66b2b044b2ea3d1fe8ca84cd159
SSDEEP

12288:djWIBsILBzZfU2UB9Hx8keZgx7CvzT4iOmW1FgYgnWs7dyax9I9gv:djWIBsezZs2MxPIbT41/gR0cIo

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  ac1336be026c33c2653a7106e7781a1a0b6593173b5c97b091f60af51f9b9d4a
- Size
  
  516KB
- MD5
  
  45abdf6f2f3367a7239e75b6f24335de
- SHA1
  
  dfbd21d6124ceb24f93ec786c40cf49a8bf434d7
- SHA256
  
  ac1336be026c33c2653a7106e7781a1a0b6593173b5c97b091f60af51f9b9d4a
- SHA512
  
  fbe2f5fb6869fe16c78e6858ab902975e5eeaba06dc7bae37ab30c18d5dc0f61c3a6f9dfeef9f8e708a3e6ed927011a9d62cf66b2b044b2ea3d1fe8ca84cd159
- SSDEEP
  
  12288:djWIBsILBzZfU2UB9Hx8keZgx7CvzT4iOmW1FgYgnWs7dyax9I9gv:djWIBsezZs2MxPIbT41/gR0cIo
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2