General
Target

32bit_decompressed.dll

Size

68KB

Sample

210317-yfsynbk6qe

Score
10/10
MD5

9774b2e5e34269bc3adc01d73bdfa76a

SHA1

adc27dc8a9e33cc2c7684bf47d5cc98d0bdc7958

SHA256

e058280f4b15c1be6488049e0bdba555f1baf42e139b7251d6b2c230e28e0aef

SHA512

90cefd6e4836d4a26f59f551a33a5b4d1cd45891156211e706ad72d16539a3dacda3da69c796e70b3bb6d141820ec2ac2d063a58657a27067f4662d3fa7b7516

Malware Config
Targets
Target

32bit_decompressed.dll

MD5

9774b2e5e34269bc3adc01d73bdfa76a

Filesize

68KB

Score
10/10
SHA1

adc27dc8a9e33cc2c7684bf47d5cc98d0bdc7958

SHA256

e058280f4b15c1be6488049e0bdba555f1baf42e139b7251d6b2c230e28e0aef

SHA512

90cefd6e4836d4a26f59f551a33a5b4d1cd45891156211e706ad72d16539a3dacda3da69c796e70b3bb6d141820ec2ac2d063a58657a27067f4662d3fa7b7516

Tags

Signatures

  • Mimikatz

    Description

    mimikatz is an open source tool to dump credentials on Windows.

    Tags

  • mimikatz is an open source tool to dump credentials on Windows

  • Blocklisted process makes network request

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          Score
                          10/10

                          behavioral1

                          Score
                          10/10

                          behavioral2

                          Score
                          10/10