bd7cb674391cf7779570544ce2b38ab9af123d2e5b3d00bc2e531e0527c04bf4 | Triage

Sharing

General

Target

Un_A.exe
Size

80KB
Sample

231220-dvnj7adad7
MD5

66034ab42eee7e5d2ba7139d668e8f37
SHA1

3a558e0b48e288a5d6980e3baa44b82481c2261c
SHA256

bd7cb674391cf7779570544ce2b38ab9af123d2e5b3d00bc2e531e0527c04bf4
SHA512

84cd7a3a33aa2f19f4b5f0e823906d982268f56bd81441d95ecc990f92c909b0f83dbdd6466a887075d450a8b0b802ca6d04a45ff7403918ac57e164159231d4
SSDEEP

1536:DmL/t9u39UJJHefluwDEuddYeIAhSoFN9RDewHUz4Jb2JZ:DmpI39URWuwDEudduAhJSw0z4Jba

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  Un_A.exe
- Size
  
  80KB
- MD5
  
  66034ab42eee7e5d2ba7139d668e8f37
- SHA1
  
  3a558e0b48e288a5d6980e3baa44b82481c2261c
- SHA256
  
  bd7cb674391cf7779570544ce2b38ab9af123d2e5b3d00bc2e531e0527c04bf4
- SHA512
  
  84cd7a3a33aa2f19f4b5f0e823906d982268f56bd81441d95ecc990f92c909b0f83dbdd6466a887075d450a8b0b802ca6d04a45ff7403918ac57e164159231d4
- SSDEEP
  
  1536:DmL/t9u39UJJHefluwDEuddYeIAhSoFN9RDewHUz4Jb2JZ:DmpI39URWuwDEudduAhJSw0z4Jba
Score

8^/10

evasion
- Modifies Windows Firewall
  evasion
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2