3996291d72108c0bc7818d193e823c1700e548d0fcd3376d75c88fe4afc31aec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d54532f597331497ee1f4ef4d65bceb0N
Size

144KB
Sample

240914-z8meyaxapl
MD5

d54532f597331497ee1f4ef4d65bceb0
SHA1

67646c1f2512370066ee658218f272060b41261a
SHA256

3996291d72108c0bc7818d193e823c1700e548d0fcd3376d75c88fe4afc31aec
SHA512

e99fbff32a67e65d1f84be61b151fcfbf49018a3fe7a1f489c281cc47330894dc8277b7c9b5d9fcabecc0c50c1bf6d006e23b4b152ec27506cc2e5bba07082d7
SSDEEP

3072:4j2qFAEM82n7GC2jctoKpsusT2rEFpeoIUpZOzlhchRDmg:8WX8I0jct5rEJdpY4h

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  d54532f597331497ee1f4ef4d65bceb0N
- Size
  
  144KB
- MD5
  
  d54532f597331497ee1f4ef4d65bceb0
- SHA1
  
  67646c1f2512370066ee658218f272060b41261a
- SHA256
  
  3996291d72108c0bc7818d193e823c1700e548d0fcd3376d75c88fe4afc31aec
- SHA512
  
  e99fbff32a67e65d1f84be61b151fcfbf49018a3fe7a1f489c281cc47330894dc8277b7c9b5d9fcabecc0c50c1bf6d006e23b4b152ec27506cc2e5bba07082d7
- SSDEEP
  
  3072:4j2qFAEM82n7GC2jctoKpsusT2rEFpeoIUpZOzlhchRDmg:8WX8I0jct5rEJdpY4h
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion