217976715d6d8ab2abb383cc7207b62dc907319e3c93aae62ade7822e2f48d9a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

217976715d6d8ab2abb383cc7207b62dc907319e3c93aae62ade7822e2f48d9a
Size

361KB
Sample

221011-rmvv7aheb8
MD5

265348ca1d4b28fa2697f8000314976b
SHA1

661dab54fe0f98a536d3b359d578cdf7cabe2e83
SHA256

217976715d6d8ab2abb383cc7207b62dc907319e3c93aae62ade7822e2f48d9a
SHA512

b276d3db9540fd318cc323532989f9389f267b035da250401a28fd77ea3cb717e4c79029fc95f72b4b8a0a6deba4cb71f082cc6a921c14ff07a097890d6215f4
SSDEEP

6144:UflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:UflfAsiVGjSGecvX

Score

10^/10

Malware Config

Targets

- Target
  
  217976715d6d8ab2abb383cc7207b62dc907319e3c93aae62ade7822e2f48d9a
- Size
  
  361KB
- MD5
  
  265348ca1d4b28fa2697f8000314976b
- SHA1
  
  661dab54fe0f98a536d3b359d578cdf7cabe2e83
- SHA256
  
  217976715d6d8ab2abb383cc7207b62dc907319e3c93aae62ade7822e2f48d9a
- SHA512
  
  b276d3db9540fd318cc323532989f9389f267b035da250401a28fd77ea3cb717e4c79029fc95f72b4b8a0a6deba4cb71f082cc6a921c14ff07a097890d6215f4
- SSDEEP
  
  6144:UflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:UflfAsiVGjSGecvX
Score

10^/10
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2