da1ae12df8747211d807a092956c83fd192aed81667e220929443a4a57b727f4 | Triage

Sharing

General

Target

da1ae12df8747211d807a092956c83fd192aed81667e220929443a4a57b727f4
Size

361KB
Sample

221030-f1sr7sdfc9
MD5

92e1693b05573c44a7957ae5170e9dff
SHA1

6c0030f584bae6cff346329750f1ebe0fb9dcff1
SHA256

da1ae12df8747211d807a092956c83fd192aed81667e220929443a4a57b727f4
SHA512

66573360617361b8e427f5b13286fde6bfba2c8e16eeea6b33adabaa30eacd04c57eb7a4dbd45fc9c9539b14a5fb0dc758ab5db7b8473d178b6c881b3f9d6f2c
SSDEEP

6144:gflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:gflfAsiVGjSGecvX

Score

10^/10

Malware Config

Targets

- Target
  
  da1ae12df8747211d807a092956c83fd192aed81667e220929443a4a57b727f4
- Size
  
  361KB
- MD5
  
  92e1693b05573c44a7957ae5170e9dff
- SHA1
  
  6c0030f584bae6cff346329750f1ebe0fb9dcff1
- SHA256
  
  da1ae12df8747211d807a092956c83fd192aed81667e220929443a4a57b727f4
- SHA512
  
  66573360617361b8e427f5b13286fde6bfba2c8e16eeea6b33adabaa30eacd04c57eb7a4dbd45fc9c9539b14a5fb0dc758ab5db7b8473d178b6c881b3f9d6f2c
- SSDEEP
  
  6144:gflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:gflfAsiVGjSGecvX
Score

10^/10
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2