9b153af037034f65964db84dd2817db67cea6fcc5fbce878a66192de5da493b4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b153af037034f65964db84dd2817db67cea6fcc5fbce878a66192de5da493b4
Size

361KB
Sample

221030-f1vlssegbp
MD5

84744e9c2f529c2100efc9050f1a817b
SHA1

8a360441f3991660c20636cf8a73d463f9593bfd
SHA256

9b153af037034f65964db84dd2817db67cea6fcc5fbce878a66192de5da493b4
SHA512

6316a23113d0d91c8db936bb0bb254f3fd252aab32bf99b9a065cebd1840b53015d576c20bf51ac16111d268ff000c4e883b4e0e837d23580c9f9df802567676
SSDEEP

6144:uflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:uflfAsiVGjSGecvX

Score

10^/10

Malware Config

Targets

- Target
  
  9b153af037034f65964db84dd2817db67cea6fcc5fbce878a66192de5da493b4
- Size
  
  361KB
- MD5
  
  84744e9c2f529c2100efc9050f1a817b
- SHA1
  
  8a360441f3991660c20636cf8a73d463f9593bfd
- SHA256
  
  9b153af037034f65964db84dd2817db67cea6fcc5fbce878a66192de5da493b4
- SHA512
  
  6316a23113d0d91c8db936bb0bb254f3fd252aab32bf99b9a065cebd1840b53015d576c20bf51ac16111d268ff000c4e883b4e0e837d23580c9f9df802567676
- SSDEEP
  
  6144:uflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:uflfAsiVGjSGecvX
Score

10^/10
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2