e6e0265ce3a9780794f328c982f2ee5429a6129eefdb14d85287d364f0c16eea | Triage

Sharing

General

Target

e6e0265ce3a9780794f328c982f2ee5429a6129eefdb14d85287d364f0c16eeaN
Size

62KB
Sample

241009-qbyx2avekq
MD5

8294558f729a50a03eb03f6bb05bac70
SHA1

3943034ddc393e3e9e7a3451cb6c751ea81bc805
SHA256

e6e0265ce3a9780794f328c982f2ee5429a6129eefdb14d85287d364f0c16eea
SHA512

d216c42208ddad83d12a8797eb9c05a291615df46ff0875e3baad32a5c6bd34a009c692646f8739faf7e4c3f1c0e4e02da1705b112de4feb04c9e20979c1db04
SSDEEP

1536:/zURDoq4OZZZLlCIibVVvJnVdT3eGHboGzO:/4RD68wbVVvh/TO0O

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  e6e0265ce3a9780794f328c982f2ee5429a6129eefdb14d85287d364f0c16eeaN
- Size
  
  62KB
- MD5
  
  8294558f729a50a03eb03f6bb05bac70
- SHA1
  
  3943034ddc393e3e9e7a3451cb6c751ea81bc805
- SHA256
  
  e6e0265ce3a9780794f328c982f2ee5429a6129eefdb14d85287d364f0c16eea
- SHA512
  
  d216c42208ddad83d12a8797eb9c05a291615df46ff0875e3baad32a5c6bd34a009c692646f8739faf7e4c3f1c0e4e02da1705b112de4feb04c9e20979c1db04
- SSDEEP
  
  1536:/zURDoq4OZZZLlCIibVVvJnVdT3eGHboGzO:/4RD68wbVVvh/TO0O
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion