7e3cc838ab3aa1207957dbe39acf9379d00ed93c5cdf74a56a9e8a4f4453b3c8 | Triage

Sharing

General

Target

KeyboardSplitter.exe
Size

6.4MB
Sample

230212-264mjshc59
MD5

85be9314df40802ef6ca32b276389737
SHA1

49e09df75179e4df7f435c5073478932b43fecb6
SHA256

7e3cc838ab3aa1207957dbe39acf9379d00ed93c5cdf74a56a9e8a4f4453b3c8
SHA512

9c90819c49db3170cb8e897b8b7c515727618999ea6d5b9a6f638ec8943a8cc208efa352f5029dd7b33e8fef46e869669b60d334c77ad117630ac47577237fb6
SSDEEP

98304:Dnwz2f6G5rKvmZLJoW/HzZ2ans8GVoLd+GnltN0A0AZ4lBkCOX2r:Dwza642OZmW/d2ansBGdPnl4FECE2

Score

8^/10

Malware Config

Targets

- Target
  
  KeyboardSplitter.exe
- Size
  
  6.4MB
- MD5
  
  85be9314df40802ef6ca32b276389737
- SHA1
  
  49e09df75179e4df7f435c5073478932b43fecb6
- SHA256
  
  7e3cc838ab3aa1207957dbe39acf9379d00ed93c5cdf74a56a9e8a4f4453b3c8
- SHA512
  
  9c90819c49db3170cb8e897b8b7c515727618999ea6d5b9a6f638ec8943a8cc208efa352f5029dd7b33e8fef46e869669b60d334c77ad117630ac47577237fb6
- SSDEEP
  
  98304:Dnwz2f6G5rKvmZLJoW/HzZ2ans8GVoLd+GnltN0A0AZ4lBkCOX2r:Dwza642OZmW/d2ansBGdPnl4FECE2
Score

8^/10
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1