61d369ee21195549cffcc9df15627ae515727bc58d994424bf88a898b0e3b14b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a9848a08e7d87afa812a284409469b79_mafia_nionspy_JC.exe
Size

328KB
Sample

230827-rgrxcaab27
MD5

a9848a08e7d87afa812a284409469b79
SHA1

70f55dab792b86f74e49d2fa4f86c7aebccf9293
SHA256

61d369ee21195549cffcc9df15627ae515727bc58d994424bf88a898b0e3b14b
SHA512

9b183c09cd071442b1c3a7a4fe76f2253f17672c597d12fe0e206544dc365a765194b4a7c61000c9cc6b178fc32dfebe9996ecc734845f6b4acc4d454de409e9
SSDEEP

6144:R2+JS2sFafI8U0obHCW/2a7XQcsPMjVWrG89gkPzDh1v:R2TFafJiHCWBWPMjVWrXf1v

Score

7^/10

Malware Config

Targets

- Target
  
  a9848a08e7d87afa812a284409469b79_mafia_nionspy_JC.exe
- Size
  
  328KB
- MD5
  
  a9848a08e7d87afa812a284409469b79
- SHA1
  
  70f55dab792b86f74e49d2fa4f86c7aebccf9293
- SHA256
  
  61d369ee21195549cffcc9df15627ae515727bc58d994424bf88a898b0e3b14b
- SHA512
  
  9b183c09cd071442b1c3a7a4fe76f2253f17672c597d12fe0e206544dc365a765194b4a7c61000c9cc6b178fc32dfebe9996ecc734845f6b4acc4d454de409e9
- SSDEEP
  
  6144:R2+JS2sFafI8U0obHCW/2a7XQcsPMjVWrG89gkPzDh1v:R2TFafJiHCWBWPMjVWrXf1v
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2