f7a00659422f62b10d460d93b78b9d489d19bdbcda637075f33e34b9490092d4 | Triage

Sharing

General

Target

f7a00659422f62b10d460d93b78b9d489d19bdbcda637075f33e34b9490092d4
Size

361KB
Sample

221123-tfhy6aha4t
MD5

5246fbcfe4c457612cf0abffbeddeeb0
SHA1

fc9c32cbcbf229b7a565b156e6aa77100f6f61c9
SHA256

f7a00659422f62b10d460d93b78b9d489d19bdbcda637075f33e34b9490092d4
SHA512

c2ef98daf875f8ec222339036606d591e9c3369ad0c3c68b907731f4194a0533c2228ad109f1d17c188032a8c2757eb59ea22aa49baace475cb0c4be5301c9b3
SSDEEP

6144:iflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:iflfAsiVGjSGecvX

Score

10^/10

Malware Config

Targets

- Target
  
  f7a00659422f62b10d460d93b78b9d489d19bdbcda637075f33e34b9490092d4
- Size
  
  361KB
- MD5
  
  5246fbcfe4c457612cf0abffbeddeeb0
- SHA1
  
  fc9c32cbcbf229b7a565b156e6aa77100f6f61c9
- SHA256
  
  f7a00659422f62b10d460d93b78b9d489d19bdbcda637075f33e34b9490092d4
- SHA512
  
  c2ef98daf875f8ec222339036606d591e9c3369ad0c3c68b907731f4194a0533c2228ad109f1d17c188032a8c2757eb59ea22aa49baace475cb0c4be5301c9b3
- SSDEEP
  
  6144:iflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:iflfAsiVGjSGecvX
Score

10^/10
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2