General

  • Target

    32bit_decompressed.dll

  • Size

    68KB

  • Sample

    210317-yfsynbk6qe

  • MD5

    9774b2e5e34269bc3adc01d73bdfa76a

  • SHA1

    adc27dc8a9e33cc2c7684bf47d5cc98d0bdc7958

  • SHA256

    e058280f4b15c1be6488049e0bdba555f1baf42e139b7251d6b2c230e28e0aef

  • SHA512

    90cefd6e4836d4a26f59f551a33a5b4d1cd45891156211e706ad72d16539a3dacda3da69c796e70b3bb6d141820ec2ac2d063a58657a27067f4662d3fa7b7516

Score
10/10

Malware Config

Targets

    • Target

      32bit_decompressed.dll

    • Size

      68KB

    • MD5

      9774b2e5e34269bc3adc01d73bdfa76a

    • SHA1

      adc27dc8a9e33cc2c7684bf47d5cc98d0bdc7958

    • SHA256

      e058280f4b15c1be6488049e0bdba555f1baf42e139b7251d6b2c230e28e0aef

    • SHA512

      90cefd6e4836d4a26f59f551a33a5b4d1cd45891156211e706ad72d16539a3dacda3da69c796e70b3bb6d141820ec2ac2d063a58657a27067f4662d3fa7b7516

    Score
    10/10
    • Mimikatz

      mimikatz is an open source tool to dump credentials on Windows.

    • mimikatz is an open source tool to dump credentials on Windows

    • Blocklisted process makes network request

MITRE ATT&CK Matrix

Tasks