General

  • Target

    50ad0e6e9dc72d10579c20bb436f09eeaa7bfdbcb5747a2590af667823e85609

  • Size

    2MB

  • Sample

    210730-1hfhw7fvxs

  • MD5

    01c846bfc37b10ea43474e1781e0af52

  • SHA1

    edba1b73ddd0e32784ae21844c940d7850531b82

  • SHA256

    50ad0e6e9dc72d10579c20bb436f09eeaa7bfdbcb5747a2590af667823e85609

  • SHA512

    94345f6c4a2b1edce2875a022f3daafff945e74a6f6a00e257379f3e4a52d99f5e969376fe6be37d5f8d76fb4afcda2a451445a203bc676f599c855703ae11cd

Score
10/10

Malware Config

Targets

    • Target

      50ad0e6e9dc72d10579c20bb436f09eeaa7bfdbcb5747a2590af667823e85609

    • Size

      2MB

    • MD5

      01c846bfc37b10ea43474e1781e0af52

    • SHA1

      edba1b73ddd0e32784ae21844c940d7850531b82

    • SHA256

      50ad0e6e9dc72d10579c20bb436f09eeaa7bfdbcb5747a2590af667823e85609

    • SHA512

      94345f6c4a2b1edce2875a022f3daafff945e74a6f6a00e257379f3e4a52d99f5e969376fe6be37d5f8d76fb4afcda2a451445a203bc676f599c855703ae11cd

    Score
    10/10
    • Suspicious use of NtCreateProcessExOtherParentProcess

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Discovery

            Execution

              Exfiltration

                Impact

                  Initial Access

                    Lateral Movement

                      Persistence

                        Privilege Escalation

                          Tasks