General

  • Target

    023745f6ac688045e613073b6275dab1d7ae760d6bad040c22d626df11e01e64

  • Size

    276KB

  • MD5

    6c4a4c0e82748740f04bc9b4e6f236d9

  • SHA1

    60920be760fd04d8df9f914c70d216d755de00bb

  • SHA256

    023745f6ac688045e613073b6275dab1d7ae760d6bad040c22d626df11e01e64

  • SHA512

    d3a8c3525bc12ffef1d97e587127dd88ee63b877338dd4154dc192a890381f7121987cca67745a86b4ecf9d7782c1d186b72bbe1904fe2f24576aa15fb086822

  • SSDEEP

    6144:JjIKMFKmCtXFwXc49RKLlW4hRlCOlhyxWSMK1PGjVOuFO:sTCtaszLlHZ9lcgKUjVOug

Score
10/10

Malware Config

Signatures

  • Mimikatz family
  • mimikatz is an open source tool to dump credentials on Windows 4 IoCs

Files

  • 023745f6ac688045e613073b6275dab1d7ae760d6bad040c22d626df11e01e64
    .rar
  • README.md
  • Win32/mimidrv.sys
    .exe windows x86

    98417e01a287b51816cf84c6650a0141


    Code Sign

    Headers

    Imports

    Sections

  • Win32/mimikatz.exe
    .exe windows x86

    9350e190375290368653be75573eb978


    Headers

    Imports

    Sections

  • Win32/mimilib.dll
    .dll windows x86

    5fb9170191537a3476f88c308b72602c


    Headers

    Imports

    Exports

    Sections

  • x64/mimidrv.sys
    .exe windows x64

    21ec10a4f7c47d2799b4bd4ed6dfe115


    Code Sign

    Headers

    Imports

    Sections

  • x64/mimikatz.exe
    .exe windows x64

    1e91a75eca0fa7efced1ee3fcead4e3d


    Headers

    Imports

    Sections

  • x64/mimilib.dll
    .dll windows x64

    21225f2b6a83d9bc55bb1f288175c383


    Headers

    Imports

    Exports

    Sections