81f24d1c310214b8f66345f250a6d5493e5e1cdf06d39d18a96cd9f93a1e7655 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

81f24d1c310214b8f66345f250a6d5493e5e1cdf06d39d18a96cd9f93a1e7655
Size

6.9MB
Sample

221012-t3hxnsbff2
MD5

da01dd0941131f463e5ed7f1d77fb4bb
SHA1

49f7348389c56e15437dd3272d03e9a21eee4b01
SHA256

81f24d1c310214b8f66345f250a6d5493e5e1cdf06d39d18a96cd9f93a1e7655
SHA512

f237a20b5d29c00c4644bc85f82b304ab635488bbaa087458b071efb28b2ffd52287c0a153bc3b742eb02b1a52be052d276bd89c98064a8dcda35a07dc5a9c07
SSDEEP

49152:KWOQFRl+uM5brJPRe07wMZcu91Rns3A4gFFgmjOQCkynj79IY6bDAu02ggQLHiGR:5

Score

3^/10

Malware Config

Targets

- Target
  
  WdfCoInstaller01011.dll
- Size
  
  1.7MB
- MD5
  
  d10864c1730172780c2d4be633b9220a
- SHA1
  
  b85d02ba0e8de4aeded1a2f5679505cd403bd201
- SHA256
  
  f6fb39a8578f19616570d5a3dc7212c84a9da232b30a03376bbf08f4264fedf2
- SHA512
  
  c161bfa9118e04eb60a885bf99758843c4b1349ac58d2e501dabbd7efc0480ec902ac9a2be16f850b218e97b022a90fcc44925d7b6e5113766621f7ade38b040
- SSDEEP
  
  49152:jRUp077GQSph1DxQOzAFXEfEacq1XT7HM:jSoe1GEf5j7HM
Score

1^/10
behavioral1 behavioral2
- Target
  
  nuidfltr.sys
- Size
  
  29KB
- MD5
  
  96acbf3ddc38a52fee115f577f36568f
- SHA1
  
  feebd056c38941529e6451509c949d72406f681a
- SHA256
  
  db8cb01971208c8d7a306a5feda39a3802195123e6b801dfb905b0e1934d3c96
- SHA512
  
  fe696f92dfde9617bd3979104f1a4f54e47a8321a8f1e941ccee4d75f46b4b73ffff8a835c18a2ce54f621f66fd8801439c74660767171981eeb1a4743999a7c
- SSDEEP
  
  384:74mPVhBo4mWRQs6G9otH0HMRGEBMMSxibaAXa0BH6+rWaHdWkWq71q//0GftpBjX:7E4hdeCMRGCBSIFXa0F6+rpdE8iN
Score

1^/10
behavioral3 behavioral4
- Target
  
  patch_Log4j.exe
- Size
  
  709KB
- MD5
  
  3eaffea946cb9e8cfe4b876cad2ce506
- SHA1
  
  d78a7fd83e465feb701f3cc547544b7b95ddff37
- SHA256
  
  ca95e8a8b6fb11b5129821f034b337b06cdf407fa9516619f3baed450ac1cf2d
- SHA512
  
  4ec00bfcbdd6cb1925a92a895f5ba51476707e2210673d63a31cd3ba1bc2dea302a17905cd3c56767e4a268c3d2773b463200fb7e419503dbcd555cf4b1019ba
- SSDEEP
  
  12288:H/zCtREtn1kVUqSafUW3HJkDhDUiARGC4a6Ye4fB4Y3ft8zsw5ExHNgay/DRUouQ:fa6n1koedp4a6Ye4fT3fWWNyL+lLk
Score

3^/10
behavioral5 behavioral6
- Target
  
  О кибербезопасности 3.1.2022.pdf
- Size
  
  3.0MB
- MD5
  
  e9a288fdaddb21184be2459b303e9f89
- SHA1
  
  4721d8426475ff36989e69c5f04de3f97df24d31
- SHA256
  
  f4db6fa3a83052152b5d16dc6a4e9749afafc026612ff5c3ad735743736ac488
- SHA512
  
  aade595dbaf33bebb74ddff1496f3331a71927530774188d52624ae79d1c78deed74f5f3defa0a6c2b0f825c34ec267171c585702bc52df073b183b3c2b5ba93
- SSDEEP
  
  49152:ixmDouLWAKG20ljf+5sE7nLQo6ocWJYRuMD7X3kNeMNOqmo:dDJKGJlj+5sE7nLQMWD7X0PNKo
Score

1^/10
behavioral7 behavioral8

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8