8499809f4b3f8f8ac2fa568c2d762d162b8376610e112339512aaad9f382b504 | Triage

Sharing

General

Target

8499809f4b3f8f8ac2fa568c2d762d162b8376610e112339512aaad9f382b504
Size

361KB
Sample

221203-wk12msce74
MD5

83c4c622187ef9cd7b756c27281e0608
SHA1

5f59b4f46fdf971f127545f2658af7b802e5f4fe
SHA256

8499809f4b3f8f8ac2fa568c2d762d162b8376610e112339512aaad9f382b504
SHA512

418ced6a56d3ebf45058bb0d1133eb9597c15dd6d823d0af435735d63382ae706a5f0edb34673ada9ecbbf25cbd8252dc10197177c382ae93a04ff4c367c2e6a
SSDEEP

6144:eflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:eflfAsiVGjSGecvX

Score

10^/10

Malware Config

Targets

- Target
  
  8499809f4b3f8f8ac2fa568c2d762d162b8376610e112339512aaad9f382b504
- Size
  
  361KB
- MD5
  
  83c4c622187ef9cd7b756c27281e0608
- SHA1
  
  5f59b4f46fdf971f127545f2658af7b802e5f4fe
- SHA256
  
  8499809f4b3f8f8ac2fa568c2d762d162b8376610e112339512aaad9f382b504
- SHA512
  
  418ced6a56d3ebf45058bb0d1133eb9597c15dd6d823d0af435735d63382ae706a5f0edb34673ada9ecbbf25cbd8252dc10197177c382ae93a04ff4c367c2e6a
- SSDEEP
  
  6144:eflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:eflfAsiVGjSGecvX
Score

10^/10
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2