e64a58606afaed0362fc46a19a70353329e8ec845820debdd3d496348b29c102 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27eb15d5b1c2cdf8541baf4cbe2ff33c
Size

15.0MB
Sample

231231-eydd3aabem
MD5

27eb15d5b1c2cdf8541baf4cbe2ff33c
SHA1

c0fe3fce066e052a051b8582e3c345fbbbb945a6
SHA256

e64a58606afaed0362fc46a19a70353329e8ec845820debdd3d496348b29c102
SHA512

a8bd8662a68fe8c8558b3e579afef6ed6c66c840dcc875371f696fcaa60d4dfb7dc836d27c509641283e7b2820727d8a0bba99f767fd3713c293eacfb8cf6e36
SSDEEP

393216:E1rzjstvwsGVCzJXHG4kyn6OknE24Z85dnQ1PWYyJvjJ3:SavwsGkN3GVy6zE24mpQh8J3

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  27eb15d5b1c2cdf8541baf4cbe2ff33c
- Size
  
  15.0MB
- MD5
  
  27eb15d5b1c2cdf8541baf4cbe2ff33c
- SHA1
  
  c0fe3fce066e052a051b8582e3c345fbbbb945a6
- SHA256
  
  e64a58606afaed0362fc46a19a70353329e8ec845820debdd3d496348b29c102
- SHA512
  
  a8bd8662a68fe8c8558b3e579afef6ed6c66c840dcc875371f696fcaa60d4dfb7dc836d27c509641283e7b2820727d8a0bba99f767fd3713c293eacfb8cf6e36
- SSDEEP
  
  393216:E1rzjstvwsGVCzJXHG4kyn6OknE24Z85dnQ1PWYyJvjJ3:SavwsGkN3GVy6zE24mpQh8J3
Score

8^/10

evasion
- Modifies Windows Firewall
  evasion
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2