General

  • Target

    d73dc4aa7ffec724b5827ff0667e2e557865649f1a47d8a6460b6abc26309bb5

  • Size

    1MB

  • Sample

    221127-bd9pzscf7z

  • MD5

    2f29177aba424f4a1124d67eef56e8cd

  • SHA1

    285b3226f97f096263cbac0a30c8b07203e930aa

  • SHA256

    d73dc4aa7ffec724b5827ff0667e2e557865649f1a47d8a6460b6abc26309bb5

  • SHA512

    9eebcaa8c4b5b323ff53c9b54573c94f7281252bfb23c7a707a8cbcdecd98f50b3b74e80990a2917d712fb606161dcbe9a05320c3e4320980239a77be9ba3519

  • SSDEEP

    24576:aoHPZIofyds3TQtP+3uMz6HmAsEDWSkwtJQNDAwQNpAxnWpai52jyzMPeVjtb:aoZIcjv3uKEmaDPzUjHxnWpXUy

Score
9/10

Malware Config

Targets

    • Target

      d73dc4aa7ffec724b5827ff0667e2e557865649f1a47d8a6460b6abc26309bb5

    • Size

      1MB

    • MD5

      2f29177aba424f4a1124d67eef56e8cd

    • SHA1

      285b3226f97f096263cbac0a30c8b07203e930aa

    • SHA256

      d73dc4aa7ffec724b5827ff0667e2e557865649f1a47d8a6460b6abc26309bb5

    • SHA512

      9eebcaa8c4b5b323ff53c9b54573c94f7281252bfb23c7a707a8cbcdecd98f50b3b74e80990a2917d712fb606161dcbe9a05320c3e4320980239a77be9ba3519

    • SSDEEP

      24576:aoHPZIofyds3TQtP+3uMz6HmAsEDWSkwtJQNDAwQNpAxnWpai52jyzMPeVjtb:aoZIcjv3uKEmaDPzUjHxnWpXUy

    Score
    9/10
    • CryptOne packer

      Detects CryptOne packer defined in NCC blogpost.

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Execution

            Exfiltration

              Impact

                Initial Access

                  Lateral Movement

                    Persistence

                      Privilege Escalation

                        Tasks