6327980bf380ad765b53f7b3411471c9069e0ad2a7ec3f247b8a8bd3fc8b6fde | Triage

Resubmissions

28-11-2022 21:48

221128-1nxwlscc61 8

25-11-2022 19:22

221125-x297bacf7x 8

Sharing

General

Target

Auto.Uрdаtе.zip
Size

9KB
Sample

221125-x297bacf7x
MD5

d0ab05d61e8e0aa53b0828a54aad48a6
SHA1

0ee71ce15a658ba1c53cd1a17e9ad8606d827712
SHA256

6327980bf380ad765b53f7b3411471c9069e0ad2a7ec3f247b8a8bd3fc8b6fde
SHA512

51d9579ec0aa105aa2732c184270dbdd8645faa27315113ff280323e0b1092f6731fb22bf7e1202bf730e75c8002dbb44ac4f57256162ba0ef8066256129005c
SSDEEP

192:RFGGWgGWkkABafVRAVHBgiMLNJHsZPsLulX3qS/g49Oh4/Apxu:RgnWJ9fVR6gi2bHLMJRm4Gu

Score

8^/10

Malware Config

Targets

- Target
  
  AutoUpdate.js
- Size
  
  24KB
- MD5
  
  856d212b5bc1f4ac238d8812832fac85
- SHA1
  
  0da7f102f13f405ea74a1c62885f090183a26b01
- SHA256
  
  f03cb5c611103d657ef2d5c5cb11cb2550405c703b8911b6b9f00fb872472498
- SHA512
  
  2d19ab718a853c542051144243747a5a1a5a6f9c355abb937b872f1ffbc513c77f4789f776355b763e8ceecbd7fbefe469edecb89dd8f580d81844a364e67ae0
- SSDEEP
  
  768:kxN+BoCblOI/IExc5EWTB9fRNCOu1nPO1+c:6FoIl+Wcnq
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2