General
-
Target
15b1dafe92e9d0faa7a24fe026c90f4e82be3ce25bb4ec700b53691d11957809N.exe
-
Size
448KB
-
Sample
250202-d2aa5stkdt
-
MD5
2c67929a7a3929359c94deeef4da7710
-
SHA1
363a86441fc390aec34d19debb57b772a71f8e21
-
SHA256
15b1dafe92e9d0faa7a24fe026c90f4e82be3ce25bb4ec700b53691d11957809
-
SHA512
c2ae914fb5bff91af78e2c3b3b32a2d5c8b40c1de2fc2c221341c9d74d9e007bf0dee3794af4290c9944ab50ee61dfd852e94e881d7e9df1d3b4f94ed35a2cc5
-
SSDEEP
6144:Th5IjKmFs4Hb4I2HIEi+nPHawdn0/JRSerTWIdeFjkZM6jI7F1eZ9A3m:t5IjKCsC4IsKRFqIQFjkZM6jI7TeZx
Malware Config
Targets
-
-
Target
15b1dafe92e9d0faa7a24fe026c90f4e82be3ce25bb4ec700b53691d11957809N.exe
-
Size
448KB
-
MD5
2c67929a7a3929359c94deeef4da7710
-
SHA1
363a86441fc390aec34d19debb57b772a71f8e21
-
SHA256
15b1dafe92e9d0faa7a24fe026c90f4e82be3ce25bb4ec700b53691d11957809
-
SHA512
c2ae914fb5bff91af78e2c3b3b32a2d5c8b40c1de2fc2c221341c9d74d9e007bf0dee3794af4290c9944ab50ee61dfd852e94e881d7e9df1d3b4f94ed35a2cc5
-
SSDEEP
6144:Th5IjKmFs4Hb4I2HIEi+nPHawdn0/JRSerTWIdeFjkZM6jI7F1eZ9A3m:t5IjKCsC4IsKRFqIQFjkZM6jI7TeZx
Score10/10-
Modifies firewall policy service
-
Adds policy Run key to start application
-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Active Setup
1Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
3Active Setup
1Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1