General
-
Target
windows.exe
-
Size
28KB
-
Sample
240921-v6ly6svbmc
-
MD5
edc4f10a5e164db64bf79eca207f2749
-
SHA1
d08eb761a5446a4409a72f3af3fb8dd60eec7c92
-
SHA256
ce6421107031175f39e61d3bcc5a98d1d94190e250034e27cdbebbadcba084a4
-
SHA512
e974a32096cc58c1a78c7aa8714b8b8b7a202859905a28d5ce61fd9a563382a7577825e8c9ee612d7ba708f3efef01a43d07df03e7c1e3e52d0cb32240d5d15d
-
SSDEEP
384:uPmtY72YtcV2/5rAiqxXshlgNsukXx/6KcPK7EJJzATLlr0LE2K1+jSbiQZIo3LE:o772w1I8hCNszXkEIJtATxr0L8rbdE
Malware Config
Targets
-
-
Target
windows.exe
-
Size
28KB
-
MD5
edc4f10a5e164db64bf79eca207f2749
-
SHA1
d08eb761a5446a4409a72f3af3fb8dd60eec7c92
-
SHA256
ce6421107031175f39e61d3bcc5a98d1d94190e250034e27cdbebbadcba084a4
-
SHA512
e974a32096cc58c1a78c7aa8714b8b8b7a202859905a28d5ce61fd9a563382a7577825e8c9ee612d7ba708f3efef01a43d07df03e7c1e3e52d0cb32240d5d15d
-
SSDEEP
384:uPmtY72YtcV2/5rAiqxXshlgNsukXx/6KcPK7EJJzATLlr0LE2K1+jSbiQZIo3LE:o772w1I8hCNszXkEIJtATxr0L8rbdE
Score8/10-
Modifies Windows Firewall
-
Drops startup file
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1