1c48f19799fbd1165bee3d6e19332ae4379a771787e997be166359818bbf283a | Triage

Sharing

General

Target

1c48f19799fbd1165bee3d6e19332ae4379a771787e997be166359818bbf283a
Size

361KB
Sample

221003-1h6assgfc9
MD5

3228ace2a13c6208cfed81472e7cc4e0
SHA1

f7648432d266370fe50507f9113790a09b1aa678
SHA256

1c48f19799fbd1165bee3d6e19332ae4379a771787e997be166359818bbf283a
SHA512

326e79856f45652045e5ac85968535d5e2c148cdee43e16127d3a3382b34a67b6e69d44c84bfc4577a80caab92cdaf4b9047a52d5789c1f7bd331be69cb9234f
SSDEEP

6144:hflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:hflfAsiVGjSGecvX

Score

10^/10

Malware Config

Targets

- Target
  
  1c48f19799fbd1165bee3d6e19332ae4379a771787e997be166359818bbf283a
- Size
  
  361KB
- MD5
  
  3228ace2a13c6208cfed81472e7cc4e0
- SHA1
  
  f7648432d266370fe50507f9113790a09b1aa678
- SHA256
  
  1c48f19799fbd1165bee3d6e19332ae4379a771787e997be166359818bbf283a
- SHA512
  
  326e79856f45652045e5ac85968535d5e2c148cdee43e16127d3a3382b34a67b6e69d44c84bfc4577a80caab92cdaf4b9047a52d5789c1f7bd331be69cb9234f
- SSDEEP
  
  6144:hflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:hflfAsiVGjSGecvX
Score

10^/10
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2