d6e7ccaafc7a6641ce67c75483994806c20cd2a8d5235c0e74dbad4ef10ddc53 | Triage

Sharing

General

Target

nwgrysgezozz.exe
Size

2.9MB
Sample

231226-pfybmaaban
MD5

da006e31cf288c73897b2d52a35b8b02
SHA1

c697bd277da5932ba9908a4a1e4ca35ad3536a36
SHA256

d6e7ccaafc7a6641ce67c75483994806c20cd2a8d5235c0e74dbad4ef10ddc53
SHA512

7199ecafd4fe613e5683b81af1184a7d24b30a8e00ff5c27ff8f0c7df18737696f97164fd6055b48d3277e3633fa902059493d5ff951431af7fda4c31214c117
SSDEEP

49152:9Bx880gTdAU7cHRlQENldU5cBSi6nWMCL6ZF8c:9B68z3YnQENHU5cBT0mLSOc

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  nwgrysgezozz.exe
- Size
  
  2.9MB
- MD5
  
  da006e31cf288c73897b2d52a35b8b02
- SHA1
  
  c697bd277da5932ba9908a4a1e4ca35ad3536a36
- SHA256
  
  d6e7ccaafc7a6641ce67c75483994806c20cd2a8d5235c0e74dbad4ef10ddc53
- SHA512
  
  7199ecafd4fe613e5683b81af1184a7d24b30a8e00ff5c27ff8f0c7df18737696f97164fd6055b48d3277e3633fa902059493d5ff951431af7fda4c31214c117
- SSDEEP
  
  49152:9Bx880gTdAU7cHRlQENldU5cBSi6nWMCL6ZF8c:9B68z3YnQENHU5cBT0mLSOc
Score

8^/10

evasion
- Stops running service(s)
  evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1