b2dd8103be9083c8246d71c31d46beb02a7cc1bbc040beb1c9ca8070357042ef | Triage

Sharing

General

Target

b2dd8103be9083c8246d71c31d46beb02a7cc1bbc040beb1c9ca8070357042ef
Size

361KB
Sample

221129-r65jqscg3z
MD5

7089e0e3fb46bc4310e653b69cd0b086
SHA1

cc097e94a2f8fdd936f7bb91c45cf2ddb753cd70
SHA256

b2dd8103be9083c8246d71c31d46beb02a7cc1bbc040beb1c9ca8070357042ef
SHA512

924f9c01ad6fbead19b2e62c944480dc4f57ef09cb324b0a7a20ab3382e97a6ebc60449ffd5be9c887fd94a1f90bc533e1bb8d1a106ceb35028f6662555653b7
SSDEEP

6144:mflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:mflfAsiVGjSGecvX

Score

10^/10

Malware Config

Targets

- Target
  
  b2dd8103be9083c8246d71c31d46beb02a7cc1bbc040beb1c9ca8070357042ef
- Size
  
  361KB
- MD5
  
  7089e0e3fb46bc4310e653b69cd0b086
- SHA1
  
  cc097e94a2f8fdd936f7bb91c45cf2ddb753cd70
- SHA256
  
  b2dd8103be9083c8246d71c31d46beb02a7cc1bbc040beb1c9ca8070357042ef
- SHA512
  
  924f9c01ad6fbead19b2e62c944480dc4f57ef09cb324b0a7a20ab3382e97a6ebc60449ffd5be9c887fd94a1f90bc533e1bb8d1a106ceb35028f6662555653b7
- SSDEEP
  
  6144:mflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:mflfAsiVGjSGecvX
Score

10^/10
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2