e492f30eb8a94e28e6658442388ab68bb002090a2cc040b32991d030f7934db4

General
Target

e492f30eb8a94e28e6658442388ab68bb002090a2cc040b32991d030f7934db4

Size

162KB

Sample

210611-c1zbpy65a6

Score
10 /10
MD5

984659f72b2471de93d4f933a838a3d1

SHA1

85d0017e3f6e527c1cfffdc6a4effbddb928c9b8

SHA256

e492f30eb8a94e28e6658442388ab68bb002090a2cc040b32991d030f7934db4

SHA512

3d08d792ccd85e702a2e001f9b42e54a4e76a4a42faa4236cd42b6c47be9f08f816fcb2f72db21b1d000549a326d864e2e6be2a3bb2d3c62aaef5d7816fad8ae

Malware Config
Targets
Target

e492f30eb8a94e28e6658442388ab68bb002090a2cc040b32991d030f7934db4

MD5

984659f72b2471de93d4f933a838a3d1

Filesize

162KB

Score
10 /10
SHA1

85d0017e3f6e527c1cfffdc6a4effbddb928c9b8

SHA256

e492f30eb8a94e28e6658442388ab68bb002090a2cc040b32991d030f7934db4

SHA512

3d08d792ccd85e702a2e001f9b42e54a4e76a4a42faa4236cd42b6c47be9f08f816fcb2f72db21b1d000549a326d864e2e6be2a3bb2d3c62aaef5d7816fad8ae

Signatures

  • Suspicious use of NtCreateProcessExOtherParentProcess

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10