3fd432cbc2ca04eb59e87c7765faf8f23d713ee1b9a42eaacc03e6039ccfd4e0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fd432cbc2ca04eb59e87c7765faf8f23d713ee1b9a42eaacc03e6039ccfd4e0
Size

361KB
Sample

220919-d4ecwaadgm
MD5

78069967350d70197ec5d82c5dbfbe4b
SHA1

57e3a99dc8e8d38acaf846b4f49ef9e58728a8b2
SHA256

3fd432cbc2ca04eb59e87c7765faf8f23d713ee1b9a42eaacc03e6039ccfd4e0
SHA512

1a35ac5aef41c22285ff03900efc63eb5f1738e24fee9ce41db95b581d1b4c6b894a71597104e1214d34d92d7de7df22e97972fd7875e2fbbed57feaa6de0ce5
SSDEEP

6144:VflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:VflfAsiVGjSGecvX

Score

10^/10

Malware Config

Targets

- Target
  
  3fd432cbc2ca04eb59e87c7765faf8f23d713ee1b9a42eaacc03e6039ccfd4e0
- Size
  
  361KB
- MD5
  
  78069967350d70197ec5d82c5dbfbe4b
- SHA1
  
  57e3a99dc8e8d38acaf846b4f49ef9e58728a8b2
- SHA256
  
  3fd432cbc2ca04eb59e87c7765faf8f23d713ee1b9a42eaacc03e6039ccfd4e0
- SHA512
  
  1a35ac5aef41c22285ff03900efc63eb5f1738e24fee9ce41db95b581d1b4c6b894a71597104e1214d34d92d7de7df22e97972fd7875e2fbbed57feaa6de0ce5
- SSDEEP
  
  6144:VflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:VflfAsiVGjSGecvX
Score

10^/10
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2