9d92c6dbbba544dd4d92bbbd237e51bbdef26295ba83023a663ecfc716d6ea57 | Triage

Sharing

General

Target

001971d561ed4261406111581570efe4.exe
Size

24KB
Sample

231230-vrbjwsahdj
MD5

001971d561ed4261406111581570efe4
SHA1

b3a6270ad0ffbc4f499b7338c3ef39dc4999c96c
SHA256

9d92c6dbbba544dd4d92bbbd237e51bbdef26295ba83023a663ecfc716d6ea57
SHA512

9677b4861552b21fb3a0b948cfabb716db9d797d0f1fdfa17c53072782347c946a3cf79cd30dd9d0a7b393b4db76d66cfd14d5be29fcc2981f6c27305372c4f5
SSDEEP

768:Euz+meylARxZpBKBJt0pms3AjsknaJ4IqK:K9uARxZpBK/2ms38skaWbK

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  001971d561ed4261406111581570efe4.exe
- Size
  
  24KB
- MD5
  
  001971d561ed4261406111581570efe4
- SHA1
  
  b3a6270ad0ffbc4f499b7338c3ef39dc4999c96c
- SHA256
  
  9d92c6dbbba544dd4d92bbbd237e51bbdef26295ba83023a663ecfc716d6ea57
- SHA512
  
  9677b4861552b21fb3a0b948cfabb716db9d797d0f1fdfa17c53072782347c946a3cf79cd30dd9d0a7b393b4db76d66cfd14d5be29fcc2981f6c27305372c4f5
- SSDEEP
  
  768:Euz+meylARxZpBKBJt0pms3AjsknaJ4IqK:K9uARxZpBK/2ms38skaWbK
Score

10^/10

evasion persistence
- Modifies firewall policy service
  evasion
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

evasionpersistence