General
-
Target
394df27306164ded7436bcdcf8652516
-
Size
1.9MB
-
Sample
231231-rg8j4abean
-
MD5
394df27306164ded7436bcdcf8652516
-
SHA1
06f87ed1bc949dfa9921c3c407eff14205e905e1
-
SHA256
6fdad469e57694656fe9f81689b60e3585f846605f867030726f2f397f5217fc
-
SHA512
89406f408023364b52f5140c31845ebffc7b0d68efe00fa151d4ae060fe52e594b6ea82e88c9e0152d7d5320cd39464feb88619b71ec020268c0f8bb5fef9b73
-
SSDEEP
49152:oLVCag+1WlyTqlDoJC9yASTOVLk2fz0Hxe:oRCag+1WltlGjiV57w
Malware Config
Targets
-
-
Target
394df27306164ded7436bcdcf8652516
-
Size
1.9MB
-
MD5
394df27306164ded7436bcdcf8652516
-
SHA1
06f87ed1bc949dfa9921c3c407eff14205e905e1
-
SHA256
6fdad469e57694656fe9f81689b60e3585f846605f867030726f2f397f5217fc
-
SHA512
89406f408023364b52f5140c31845ebffc7b0d68efe00fa151d4ae060fe52e594b6ea82e88c9e0152d7d5320cd39464feb88619b71ec020268c0f8bb5fef9b73
-
SSDEEP
49152:oLVCag+1WlyTqlDoJC9yASTOVLk2fz0Hxe:oRCag+1WltlGjiV57w
Score8/10-
Modifies Windows Firewall
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1