General

  • Target

    4123.do1.dll

  • Size

    48KB

  • Sample

    221001-zbveaafffp

  • MD5

    f776deb4df137b37dcae5406c8f3a07a

  • SHA1

    f6a31b594fca39c118927405fa4d14353b8fd49a

  • SHA256

    93cc5e6a6b671d9b0124ade32ae8b09269de9f03c5c5e66347fbfc7a8c3b305e

  • SHA512

    4077b4214b4683bb4776d470027e61fcc3cb3e78beb9377674e4a4de9115d52911e39cb29a566ab446c6962a252ce01020ffd616b5854a9d8230414262bfafe2

Score
10/10

Malware Config

Targets

    • Target

      4123.do1.dll

    • Size

      48KB

    • MD5

      f776deb4df137b37dcae5406c8f3a07a

    • SHA1

      f6a31b594fca39c118927405fa4d14353b8fd49a

    • SHA256

      93cc5e6a6b671d9b0124ade32ae8b09269de9f03c5c5e66347fbfc7a8c3b305e

    • SHA512

      4077b4214b4683bb4776d470027e61fcc3cb3e78beb9377674e4a4de9115d52911e39cb29a566ab446c6962a252ce01020ffd616b5854a9d8230414262bfafe2

    Score
    10/10
    • Nloader

      Simple loader that includes the keyword 'campo' in the URL used to download other families.

    • Nloader payload

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Discovery

            Execution

              Exfiltration

                Impact

                  Initial Access

                    Lateral Movement

                      Persistence

                        Privilege Escalation