8b6bfc846cfed814cc4c8f5e6e0626a239f3e83dabd5618cd8795276f9d2c6a2 | Triage

Sharing

General

Target

2c4464cdd5a7cf6be11cf396d6e87909_mafia_nionspy_JC.exe
Size

280KB
Sample

230801-s28w2aha72
MD5

2c4464cdd5a7cf6be11cf396d6e87909
SHA1

be3e63b6b8f14dc849e7f4a0cc1fcbb53f8554d9
SHA256

8b6bfc846cfed814cc4c8f5e6e0626a239f3e83dabd5618cd8795276f9d2c6a2
SHA512

7cfb2621be5d5df9dd21f4b38f12ae26e7bc86a0c18f61132cfd49d1828f58be0f762f58b79face8c8017790208a09d3ba3ad529193ead9c412c9827bf151eca
SSDEEP

6144:IQ+Tyfx4NF67Sbq2nW82X45gc3BaLZVS0mOoC8zbzDie:IQMyfmNFHfnWfhLZVHmOog

Score

7^/10

Malware Config

Targets

- Target
  
  2c4464cdd5a7cf6be11cf396d6e87909_mafia_nionspy_JC.exe
- Size
  
  280KB
- MD5
  
  2c4464cdd5a7cf6be11cf396d6e87909
- SHA1
  
  be3e63b6b8f14dc849e7f4a0cc1fcbb53f8554d9
- SHA256
  
  8b6bfc846cfed814cc4c8f5e6e0626a239f3e83dabd5618cd8795276f9d2c6a2
- SHA512
  
  7cfb2621be5d5df9dd21f4b38f12ae26e7bc86a0c18f61132cfd49d1828f58be0f762f58b79face8c8017790208a09d3ba3ad529193ead9c412c9827bf151eca
- SSDEEP
  
  6144:IQ+Tyfx4NF67Sbq2nW82X45gc3BaLZVS0mOoC8zbzDie:IQMyfmNFHfnWfhLZVHmOog
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2