General
-
Target
00045ab4658660ae3f9d1f4dd1ce1525
-
Size
23KB
-
Sample
231229-wpm1ksaae6
-
MD5
00045ab4658660ae3f9d1f4dd1ce1525
-
SHA1
b12fe26bc5ec4474bc0b2afc84ecb79c6a2cc094
-
SHA256
0a14e3bee15837385d464a935294e51e59a367350fac5f6b809e6975101e3542
-
SHA512
8199c0a3564f81e4cd5be59af5e5250645a8ad693550c7e5e76d61bda06f61649c51df50af4c3156cb0983c9c960f7e8775cb0274b1aeefeb30fe60de3e3811d
-
SSDEEP
384:TPyZNjtU2mfwj9CK9LAq8Kg8J5iv2K9xqaq9YyyC6EchjTqQYdzEclALQwbbqR:byZm6gA8KJv69qR6XtT9SEcnVR
Malware Config
Targets
-
-
Target
00045ab4658660ae3f9d1f4dd1ce1525
-
Size
23KB
-
MD5
00045ab4658660ae3f9d1f4dd1ce1525
-
SHA1
b12fe26bc5ec4474bc0b2afc84ecb79c6a2cc094
-
SHA256
0a14e3bee15837385d464a935294e51e59a367350fac5f6b809e6975101e3542
-
SHA512
8199c0a3564f81e4cd5be59af5e5250645a8ad693550c7e5e76d61bda06f61649c51df50af4c3156cb0983c9c960f7e8775cb0274b1aeefeb30fe60de3e3811d
-
SSDEEP
384:TPyZNjtU2mfwj9CK9LAq8Kg8J5iv2K9xqaq9YyyC6EchjTqQYdzEclALQwbbqR:byZm6gA8KJv69qR6XtT9SEcnVR
Score10/10-
Modifies firewall policy service
-
Modifies AppInit DLL entries
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1