15c19adb109baf0a3bc3ce5a40933ab26930be5c2115ed3527834d9e02809905 | Triage

Sharing

General

Target

15c19adb109baf0a3bc3ce5a40933ab26930be5c2115ed3527834d9e02809905
Size

361KB
Sample

220919-d2fsxseda4
MD5

32f2bbcb73cbd6c8367cc7719b9ec32e
SHA1

a3ae07d5547294f4702c25837f6ebde6c57c9f22
SHA256

15c19adb109baf0a3bc3ce5a40933ab26930be5c2115ed3527834d9e02809905
SHA512

9bab585b0f6ef08958aa29b7ab2aace2f06ea19851cc908985823017c753278763b10174765bda36384ae2f031347df8eb2072a02a34a58ad067ec941632f4ba
SSDEEP

6144:eflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:eflfAsiVGjSGecvX

Score

10^/10

Malware Config

Targets

- Target
  
  15c19adb109baf0a3bc3ce5a40933ab26930be5c2115ed3527834d9e02809905
- Size
  
  361KB
- MD5
  
  32f2bbcb73cbd6c8367cc7719b9ec32e
- SHA1
  
  a3ae07d5547294f4702c25837f6ebde6c57c9f22
- SHA256
  
  15c19adb109baf0a3bc3ce5a40933ab26930be5c2115ed3527834d9e02809905
- SHA512
  
  9bab585b0f6ef08958aa29b7ab2aace2f06ea19851cc908985823017c753278763b10174765bda36384ae2f031347df8eb2072a02a34a58ad067ec941632f4ba
- SSDEEP
  
  6144:eflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:eflfAsiVGjSGecvX
Score

10^/10
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2