85a34bd3ce9c605ee250254c813dc02128db524d2bb580a93877616e6c2c808c | Triage

Sharing

General

Target

Helper.exe
Size

71.3MB
Sample

231120-cqhbyaeb8z
MD5

37f193256a418ea18205838b6e7a98b8
SHA1

73a8f2f0f867a0f48e6d2dc6f0f301e79a3c30a4
SHA256

85a34bd3ce9c605ee250254c813dc02128db524d2bb580a93877616e6c2c808c
SHA512

29179f2690452c29e20ce8f646e36e77d19a0e2adebe3fa33897bc9a89c93af0ad1b2f8101ba0d799a7d42c7de2d0a6d769329e397f79e3a78b7de632c18ffc3
SSDEEP

1572864:S/zHWSnAW8Iw8ZIG45r97DTJVj8/B62U9tTvov3UvhDb3AK:e2oAW8IwYUH7T2U9tTvovgxbwK

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  Helper.exe
- Size
  
  71.3MB
- MD5
  
  37f193256a418ea18205838b6e7a98b8
- SHA1
  
  73a8f2f0f867a0f48e6d2dc6f0f301e79a3c30a4
- SHA256
  
  85a34bd3ce9c605ee250254c813dc02128db524d2bb580a93877616e6c2c808c
- SHA512
  
  29179f2690452c29e20ce8f646e36e77d19a0e2adebe3fa33897bc9a89c93af0ad1b2f8101ba0d799a7d42c7de2d0a6d769329e397f79e3a78b7de632c18ffc3
- SSDEEP
  
  1572864:S/zHWSnAW8Iw8ZIG45r97DTJVj8/B62U9tTvov3UvhDb3AK:e2oAW8IwYUH7T2U9tTvovgxbwK
Score

8^/10

evasion
- Modifies Windows Firewall
  evasion
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2