55e93f1c82dca05d2328044452c8b6bbc49bc4e161aff3e0dc5cc0a6c9df1b7d | Triage

Sharing

General

Target

55e93f1c82dca05d2328044452c8b6bbc49bc4e161aff3e0dc5cc0a6c9df1b7d
Size

4.6MB
Sample

220923-h7tdeshdgn
MD5

a5bc2e79aa42c7ccf27aa638681dd652
SHA1

6c8943f4d66c5e10c7ccbb0934f0d1d283466dcc
SHA256

55e93f1c82dca05d2328044452c8b6bbc49bc4e161aff3e0dc5cc0a6c9df1b7d
SHA512

bb84aa5097783ca08924be633f5349c1bdaf8e90f58a123a8ef7c8534881f3b4838138f6c2c4aca923a9a4e50bfc0892ab5b4ada1ee30ded364f6c28c1ee827b
SSDEEP

98304:Aih6qw84zgTC0MUkTKCP0yHb3QjBLApzmBs5JG5GCgdpvGyRFACu:Aih6L8q24iosUzvGybACu

Score

8^/10

Malware Config

Targets

- Target
  
  Keepassϰ/KeePass-2.50-Setup.exe
- Size
  
  4.2MB
- MD5
  
  bcb7da189b1f47f07d698cc366524064
- SHA1
  
  ce3ffbf41fda0d8f7866826aa9b8310546459af7
- SHA256
  
  a68704e639d75bab76cf2beec883e93981f454176fa355758afc9829037f10fa
- SHA512
  
  f9662c74ac116172ceb692cb81bc636eec379dbb2c88458cfd1438ea298abfc940529b5527742131d8b8912c9cf46789f4d4c69976ba5b747932d24b80f6e849
- SSDEEP
  
  98304:TSiMuubKlQ+ySA1oILwm/Drahj5QF7c5u5:qmSUsgy8
Score

8^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  Keepassϰ/Keepassʹý̳.docx
- Size
  
  43KB
- MD5
  
  92aa74d310229ddbe73bd9afff94f2f7
- SHA1
  
  3d34401301fff8363f43047f61a90a63fafeeaff
- SHA256
  
  82c268ce42d60761acc9b57d52d4cd99e1ac6b633f7184bb9af13531d0f68334
- SHA512
  
  68e6229255f1fd20f431698614f73ee411863c9c6e4da0a1e4ec5d8bf24d6ce6476a76ec72d329f1c87c61f814903e1b3d8ac69ecd8165b4d50c8381c23ffbdd
- SSDEEP
  
  768:Nqzj2qO2T7rHUMkN33h1R7R3Vcju1nLnz/bQ4HVTMyxI:NsjLub11R36wLnHpMyxI
Score

4^/10
behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4