af34cee2d527fe77f6dce09a3bf6ae76bb7a3eab1136bd158f38fa694cf397a2 | Triage

Sharing

General

Target

af34cee2d527fe77f6dce09a3bf6ae76bb7a3eab1136bd158f38fa694cf397a2
Size

420KB
Sample

221206-adp5xaad62
MD5

9e928e69013d1fbe59b37549fae7c277
SHA1

0f584aa88906f2628d9365d24953d10500b4c099
SHA256

af34cee2d527fe77f6dce09a3bf6ae76bb7a3eab1136bd158f38fa694cf397a2
SHA512

aa8149b018e2fe1ae97c9e978861f1c7f32030b410d50dbca107dcd9b973684b10ca0352c6c7b89248a8b7d46692320e38990f107f7790ae79d8c42db01cb55f
SSDEEP

6144:2IVUqq3PBHng5HavbEd6FxuDC8zVpJ46U/uRqy1gP:2ImJgazdUCaVpJ46U/uRqyM

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  af34cee2d527fe77f6dce09a3bf6ae76bb7a3eab1136bd158f38fa694cf397a2
- Size
  
  420KB
- MD5
  
  9e928e69013d1fbe59b37549fae7c277
- SHA1
  
  0f584aa88906f2628d9365d24953d10500b4c099
- SHA256
  
  af34cee2d527fe77f6dce09a3bf6ae76bb7a3eab1136bd158f38fa694cf397a2
- SHA512
  
  aa8149b018e2fe1ae97c9e978861f1c7f32030b410d50dbca107dcd9b973684b10ca0352c6c7b89248a8b7d46692320e38990f107f7790ae79d8c42db01cb55f
- SSDEEP
  
  6144:2IVUqq3PBHng5HavbEd6FxuDC8zVpJ46U/uRqy1gP:2ImJgazdUCaVpJ46U/uRqyM
Score

10^/10

evasion persistence
- Modifies firewall policy service
  evasion
- Adds policy Run key to start application
  persistence
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence