b4972ae67df4a75622a11cf5ebbaaf898d4755b6a6f86dd8cfccc140fa7039e5 | Triage

Sharing

General

Target

17868bf758cb6bb3a077b44a24b5235a
Size

103KB
Sample

231230-nyxblsbaer
MD5

17868bf758cb6bb3a077b44a24b5235a
SHA1

a554dd9bb14d9abf1951b87f8fd90d6a3bef204d
SHA256

b4972ae67df4a75622a11cf5ebbaaf898d4755b6a6f86dd8cfccc140fa7039e5
SHA512

2d130c6a9986fc4e56450015b62dcbf0a2dc5f410ce1f968b6a1da282f6523c7258c6362b00a2f59db795753922d564b094c5cf8b44fd4c5fd7e6c76506b57ad
SSDEEP

768:+akLN9L/MxPloy+hXyiA2IRyblMrAf2QdL0Ws4nsegRzSzXadItTjpwtF2WSfGSb:YNKxtCX424eluABS4segRd6BwtFH56

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  17868bf758cb6bb3a077b44a24b5235a
- Size
  
  103KB
- MD5
  
  17868bf758cb6bb3a077b44a24b5235a
- SHA1
  
  a554dd9bb14d9abf1951b87f8fd90d6a3bef204d
- SHA256
  
  b4972ae67df4a75622a11cf5ebbaaf898d4755b6a6f86dd8cfccc140fa7039e5
- SHA512
  
  2d130c6a9986fc4e56450015b62dcbf0a2dc5f410ce1f968b6a1da282f6523c7258c6362b00a2f59db795753922d564b094c5cf8b44fd4c5fd7e6c76506b57ad
- SSDEEP
  
  768:+akLN9L/MxPloy+hXyiA2IRyblMrAf2QdL0Ws4nsegRzSzXadItTjpwtF2WSfGSb:YNKxtCX424eluABS4segRd6BwtFH56
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2