fbf74849a2696030ec2ff4912e67119db269b9a11a9f7ab33dcaeffb2a2496f5 | Triage

Sharing

General

Target

fbf74849a2696030ec2ff4912e67119db269b9a11a9f7ab33dcaeffb2a2496f5
Size

23KB
Sample

221204-mm2lhsba54
MD5

2959afa8b33d0fd6176a7963e96ebb64
SHA1

73a621044b418a19a92149a6ab347835dc4b9f69
SHA256

fbf74849a2696030ec2ff4912e67119db269b9a11a9f7ab33dcaeffb2a2496f5
SHA512

2e7fc769d1993155c2d1b98a1674c8e64d5b761696df4d9abfd8f96861c8008309ab2bb886fd56d66cd1b9b4e395f77ecdf9ddc53eb7add3ddec39c434fb51f6
SSDEEP

384:xidD9d6GAW6ABD9SkAOs91N9kj9TUEKvjmLzxTLG8Up:o+ascsjNW9I7KxTLa

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  fbf74849a2696030ec2ff4912e67119db269b9a11a9f7ab33dcaeffb2a2496f5
- Size
  
  23KB
- MD5
  
  2959afa8b33d0fd6176a7963e96ebb64
- SHA1
  
  73a621044b418a19a92149a6ab347835dc4b9f69
- SHA256
  
  fbf74849a2696030ec2ff4912e67119db269b9a11a9f7ab33dcaeffb2a2496f5
- SHA512
  
  2e7fc769d1993155c2d1b98a1674c8e64d5b761696df4d9abfd8f96861c8008309ab2bb886fd56d66cd1b9b4e395f77ecdf9ddc53eb7add3ddec39c434fb51f6
- SSDEEP
  
  384:xidD9d6GAW6ABD9SkAOs91N9kj9TUEKvjmLzxTLG8Up:o+ascsjNW9I7KxTLa
Score

10^/10

evasion persistence
- Modifies firewall policy service
  evasion
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence