33624b333b7d9b836081b9bbc528499e385c0de519d414c327e055ef9f545337 | Triage

Sharing

General

Target

087f7845aaf6c452ffc2e4d196a86bc8
Size

23KB
Sample

231230-aqw4zsghbj
MD5

087f7845aaf6c452ffc2e4d196a86bc8
SHA1

8b77f4ec67c92279c51ecc684075718a3f90345b
SHA256

33624b333b7d9b836081b9bbc528499e385c0de519d414c327e055ef9f545337
SHA512

4402ae0d9699b5d7bde7fbfd078a688cd58580207676e421b99a9f988275f3b354e54c7555d0520f7ca235858cacf90fa1dad82d73c57c2967a4db68ab87f4b4
SSDEEP

384:BdD9d6G4LImLOoe913G+YKAb+Y0TrdLPj87dPcizgZBedaHyX:BCRasJr0PFb87dkCgZgdv

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  087f7845aaf6c452ffc2e4d196a86bc8
- Size
  
  23KB
- MD5
  
  087f7845aaf6c452ffc2e4d196a86bc8
- SHA1
  
  8b77f4ec67c92279c51ecc684075718a3f90345b
- SHA256
  
  33624b333b7d9b836081b9bbc528499e385c0de519d414c327e055ef9f545337
- SHA512
  
  4402ae0d9699b5d7bde7fbfd078a688cd58580207676e421b99a9f988275f3b354e54c7555d0520f7ca235858cacf90fa1dad82d73c57c2967a4db68ab87f4b4
- SSDEEP
  
  384:BdD9d6G4LImLOoe913G+YKAb+Y0TrdLPj87dPcizgZBedaHyX:BCRasJr0PFb87dkCgZgdv
Score

10^/10

evasion persistence
- Modifies firewall policy service
  evasion
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

evasionpersistence