62f624a2ac863cf0fd91916b4536c44446954e29f2232629f3e4cb02a4ec1dc5 | Triage

Sharing

General

Target

RMHOOK.exe
Size

13.6MB
Sample

230327-ywna2afa79
MD5

b1434b82c5a9f1dae4d3844d49e71d2b
SHA1

358a68782de28330f3bd330e481faa30a8ad322a
SHA256

62f624a2ac863cf0fd91916b4536c44446954e29f2232629f3e4cb02a4ec1dc5
SHA512

2e669a708cae00dc6cbf8905626373bcfc10d30922228cc6715f80e897a49d3fd1a50eeea49d4b9e1acd589d3c0f07ca38b0721fdc82654a840a7c1676139fd4
SSDEEP

196608:4urGVwgaunHfoOEs7ayo5xxa107oC/+EGxFDon9XoUJoyVytZkp8mjMMfyaBS:7KVwgt/zviFhoCY7El5FYtZkp8mF/

Score

5^/10

Malware Config

Targets

- Target
  
  RMHOOK.exe
- Size
  
  13.6MB
- MD5
  
  b1434b82c5a9f1dae4d3844d49e71d2b
- SHA1
  
  358a68782de28330f3bd330e481faa30a8ad322a
- SHA256
  
  62f624a2ac863cf0fd91916b4536c44446954e29f2232629f3e4cb02a4ec1dc5
- SHA512
  
  2e669a708cae00dc6cbf8905626373bcfc10d30922228cc6715f80e897a49d3fd1a50eeea49d4b9e1acd589d3c0f07ca38b0721fdc82654a840a7c1676139fd4
- SSDEEP
  
  196608:4urGVwgaunHfoOEs7ayo5xxa107oC/+EGxFDon9XoUJoyVytZkp8mjMMfyaBS:7KVwgt/zviFhoCY7El5FYtZkp8mF/
Score

5^/10
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1