8cd0c8f97653f39cdadbb857792d0a86132558b76c6da60129950e6bb86801f5 | Triage

Sharing

General

Target

file_97d3cf5d44504f50933fb2c539776165_2022-11-23_14_08_07_542000.zip
Size

45KB
Sample

221123-rkc8csbg8y
MD5

060c2ba8b31adc70b2377c152401d772
SHA1

99018608372536127ef8d87127d52d39cc48bda2
SHA256

8cd0c8f97653f39cdadbb857792d0a86132558b76c6da60129950e6bb86801f5
SHA512

5ef69b9a9fbd620a29838351d0835dcdffc2c292f270ab178e75e2343259d4209d5dcb9412ead822bb9bb2e7ab67d9be5f805106924868098ef1380d312f690e
SSDEEP

768:bhVwRDTzti6qt1bTr0vfxEORjTwElTdakYFZFkaWp4iUMpELQDGSLzqMDDtqbPht:NVSvqt1vr0vfaO5vlB/YFZZWp4iUMpNS

Score

8^/10

Malware Config

Targets

- Target
  
  entry001/ConnectWiseControl.Client.exe
- Size
  
  83KB
- MD5
  
  87ee12dfe0f5feef04c800064c609b0b
- SHA1
  
  9197a469daa9aff28090ecbb39df919cba8ae34f
- SHA256
  
  9d003b39829f60f08f12052f42e081c590e7328c61cdc964880b199c5db9f18b
- SHA512
  
  810bdf8972e0847972288bae0e65d817a9832d550a9e9e4b44b1d94c753b20eac5941b74db698f49fe85a751bc838288c09127a980f0b5483d3cac482226fdc8
- SSDEEP
  
  1536:FXn1JYSnExFkcgKKjxfmqshiKW5Xs/iYQqQJtsWFcdfRMvb+xWeuHie:VE3x5KBDYiKWm/iSw0fRMvygeY
Score

8^/10
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2