e4fdbbfdabb79d3e2c10478c204f6b43e89fa7ff3d6670c3dc3943869b64a4d5 | Triage

Sharing

General

Target

1990870e273e9855ff69ac11d5f6f04a
Size

553KB
Sample

231225-m7y15aagdn
MD5

1990870e273e9855ff69ac11d5f6f04a
SHA1

25322bf2fc420b2d808d88ed2c0239c7ab8420db
SHA256

e4fdbbfdabb79d3e2c10478c204f6b43e89fa7ff3d6670c3dc3943869b64a4d5
SHA512

83fd9c71cd25f97387df0927bc6839bd21ad5dd443b48aa890715342e1a77ef84239ac26f1e223ebbab8fada776265982dd881aedb194ca23dda52748d46b707
SSDEEP

12288:4oEtV021Oqj+AHExL805fk8r1Ur8iQaZCr8JtqtH8hSjllsQQa:FEZzSwUV5hGOaZCNtHKwlllQ

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  1990870e273e9855ff69ac11d5f6f04a
- Size
  
  553KB
- MD5
  
  1990870e273e9855ff69ac11d5f6f04a
- SHA1
  
  25322bf2fc420b2d808d88ed2c0239c7ab8420db
- SHA256
  
  e4fdbbfdabb79d3e2c10478c204f6b43e89fa7ff3d6670c3dc3943869b64a4d5
- SHA512
  
  83fd9c71cd25f97387df0927bc6839bd21ad5dd443b48aa890715342e1a77ef84239ac26f1e223ebbab8fada776265982dd881aedb194ca23dda52748d46b707
- SSDEEP
  
  12288:4oEtV021Oqj+AHExL805fk8r1Ur8iQaZCr8JtqtH8hSjllsQQa:FEZzSwUV5hGOaZCNtHKwlllQ
Score

8^/10

evasion
- Modifies Windows Firewall
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2