60b1acf218476b5cbe56a668428ac558f3c722d8c918111244c6caf71f4210c5 | Triage

Sharing

General

Target

60b1acf218476b5cbe56a668428ac558f3c722d8c918111244c6caf71f4210c5
Size

361KB
Sample

221012-rjqr3aehfp
MD5

4246a8cbe8ae159f7deae34ebea64180
SHA1

08353a04ea8141583bcb666e17a1768563a10bbf
SHA256

60b1acf218476b5cbe56a668428ac558f3c722d8c918111244c6caf71f4210c5
SHA512

ac9833005a28f7743c07e374a796e6f592dd587bb2405336070c429cf58c46b94d0611c27a36e5331a20e6812cd3b1f1b3fdcdb4e5be8b90989809fe1d44b3ac
SSDEEP

6144:MflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:MflfAsiVGjSGecvX

Score

10^/10

Malware Config

Targets

- Target
  
  60b1acf218476b5cbe56a668428ac558f3c722d8c918111244c6caf71f4210c5
- Size
  
  361KB
- MD5
  
  4246a8cbe8ae159f7deae34ebea64180
- SHA1
  
  08353a04ea8141583bcb666e17a1768563a10bbf
- SHA256
  
  60b1acf218476b5cbe56a668428ac558f3c722d8c918111244c6caf71f4210c5
- SHA512
  
  ac9833005a28f7743c07e374a796e6f592dd587bb2405336070c429cf58c46b94d0611c27a36e5331a20e6812cd3b1f1b3fdcdb4e5be8b90989809fe1d44b3ac
- SSDEEP
  
  6144:MflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:MflfAsiVGjSGecvX
Score

10^/10
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2