b1c953649f5e3bfc0c6bed68713ddafe41c1eaeae8a781afdb25cd1b23e175ac | Triage

Sharing

General

Target

b1c953649f5e3bfc0c6bed68713ddafe41c1eaeae8a781afdb25cd1b23e175ac
Size

25KB
Sample

221205-klcvnace76
MD5

055760c5c70635d69015fee55c32cb9e
SHA1

52310ae7f9e7f6d6b59e3d2b4e98db498a368a0a
SHA256

b1c953649f5e3bfc0c6bed68713ddafe41c1eaeae8a781afdb25cd1b23e175ac
SHA512

c752d5f08e0d209ede16b029a4c80a2aad43b337eedafcb5c92a439e6cbc1eadaa50051dd0c4ccf61487034063eb2ae07dc019008b6c20e3b48f6c79c001d750
SSDEEP

384:IidD9d6GA3TYpSpiC58q8c9+byQnXEnNcjR9EFhHPkU3zFh/VZQy7:9yrpr8qn+jn0+RijFh/v

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  b1c953649f5e3bfc0c6bed68713ddafe41c1eaeae8a781afdb25cd1b23e175ac
- Size
  
  25KB
- MD5
  
  055760c5c70635d69015fee55c32cb9e
- SHA1
  
  52310ae7f9e7f6d6b59e3d2b4e98db498a368a0a
- SHA256
  
  b1c953649f5e3bfc0c6bed68713ddafe41c1eaeae8a781afdb25cd1b23e175ac
- SHA512
  
  c752d5f08e0d209ede16b029a4c80a2aad43b337eedafcb5c92a439e6cbc1eadaa50051dd0c4ccf61487034063eb2ae07dc019008b6c20e3b48f6c79c001d750
- SSDEEP
  
  384:IidD9d6GA3TYpSpiC58q8c9+byQnXEnNcjR9EFhHPkU3zFh/VZQy7:9yrpr8qn+jn0+RijFh/v
Score

10^/10

evasion persistence
- Modifies firewall policy service
  evasion
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence