111318b9cf688dae0e79a8eab4342c667ef140be2f18a92b3af6b4d7f6e5ca5d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

319633d4c9ab669e679491e315a33603_mafia_nionspy_JC.exe
Size

327KB
Sample

230818-syeh1sch6x
MD5

319633d4c9ab669e679491e315a33603
SHA1

912a32b4e28d5c88945314ba77dd97a4b3c480c9
SHA256

111318b9cf688dae0e79a8eab4342c667ef140be2f18a92b3af6b4d7f6e5ca5d
SHA512

b8254de436ce33b91f46963c26befca99ed427d69cddb33df3bde5e7f02811bc102f1091715f955d089fdc63b02157903cd004da19745734d344215bd050b064
SSDEEP

6144:02+JS2sFafI8U0obHCW/2a7XQcsPMjVWrG8KgbPzDh:02TFafJiHCWBWPMjVWrXK0

Score

7^/10

Malware Config

Targets

- Target
  
  319633d4c9ab669e679491e315a33603_mafia_nionspy_JC.exe
- Size
  
  327KB
- MD5
  
  319633d4c9ab669e679491e315a33603
- SHA1
  
  912a32b4e28d5c88945314ba77dd97a4b3c480c9
- SHA256
  
  111318b9cf688dae0e79a8eab4342c667ef140be2f18a92b3af6b4d7f6e5ca5d
- SHA512
  
  b8254de436ce33b91f46963c26befca99ed427d69cddb33df3bde5e7f02811bc102f1091715f955d089fdc63b02157903cd004da19745734d344215bd050b064
- SSDEEP
  
  6144:02+JS2sFafI8U0obHCW/2a7XQcsPMjVWrG8KgbPzDh:02TFafJiHCWBWPMjVWrXK0
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2