ffd00a51c4058b3a71f15d16d04a228ac67dd97e168e38856a50817440c08b32 | Triage

Sharing

General

Target

3206164af17d6432a490df43224fd4b1_mafia_nionspy_JC.exe
Size

344KB
Sample

230801-vcchmshg97
MD5

3206164af17d6432a490df43224fd4b1
SHA1

dd6c461b91c84d4f771a95028ada64e30ab450e5
SHA256

ffd00a51c4058b3a71f15d16d04a228ac67dd97e168e38856a50817440c08b32
SHA512

7821b278317984161a235b44f0a998f4a134da7f868a70da83d13f79031206cf6a4191c18b19b5346d413ab136a8171a6aadd119cdb5bd1e30d237f5b43704b1
SSDEEP

6144:/Tz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDBRm1+gmN:/TBPFV0RyWl3h2E+7pYm0

Score

7^/10

Malware Config

Targets

- Target
  
  3206164af17d6432a490df43224fd4b1_mafia_nionspy_JC.exe
- Size
  
  344KB
- MD5
  
  3206164af17d6432a490df43224fd4b1
- SHA1
  
  dd6c461b91c84d4f771a95028ada64e30ab450e5
- SHA256
  
  ffd00a51c4058b3a71f15d16d04a228ac67dd97e168e38856a50817440c08b32
- SHA512
  
  7821b278317984161a235b44f0a998f4a134da7f868a70da83d13f79031206cf6a4191c18b19b5346d413ab136a8171a6aadd119cdb5bd1e30d237f5b43704b1
- SSDEEP
  
  6144:/Tz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDBRm1+gmN:/TBPFV0RyWl3h2E+7pYm0
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2