6ad032994283147ad953d08b319de7194d5ed95261a4f242de877867d858238d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

005d0caaa780883a4c81166c2bfd31bc
Size

22KB
Sample

231229-w1438sdae9
MD5

005d0caaa780883a4c81166c2bfd31bc
SHA1

bb46353381f9dd75f15b9d3e24bee69385708701
SHA256

6ad032994283147ad953d08b319de7194d5ed95261a4f242de877867d858238d
SHA512

e93208b594bccdc34803c2146c4f9913f41ed784c47500276ca4714f902d55eaf4fd2e7383be1df7811c944c5cc35454690aac7c3a19cc6cfc994b0b20793585
SSDEEP

384:JPyZNjtU2mXAxbcCQzCll7CeSxXObvHIZ/LhYrFj0iwezxIdqu:ByZuiWCl1WxuvHIZ1YV0ExIdL

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  005d0caaa780883a4c81166c2bfd31bc
- Size
  
  22KB
- MD5
  
  005d0caaa780883a4c81166c2bfd31bc
- SHA1
  
  bb46353381f9dd75f15b9d3e24bee69385708701
- SHA256
  
  6ad032994283147ad953d08b319de7194d5ed95261a4f242de877867d858238d
- SHA512
  
  e93208b594bccdc34803c2146c4f9913f41ed784c47500276ca4714f902d55eaf4fd2e7383be1df7811c944c5cc35454690aac7c3a19cc6cfc994b0b20793585
- SSDEEP
  
  384:JPyZNjtU2mXAxbcCQzCll7CeSxXObvHIZ/LhYrFj0iwezxIdqu:ByZuiWCl1WxuvHIZ1YV0ExIdL
Score

10^/10

evasion persistence
- Modifies firewall policy service
  evasion
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence