9cce295e9bf2c509f6fe73fd9c59334bde92cf2965ee54432c270718f28d54fa | Triage

Sharing

General

Target

14a09a48ad23fe0ea5a180bee8cb750a.bin
Size

140KB
Sample

230911-bk75qsch93
MD5

9564051f7c618b2c1c760d6350cddbe8
SHA1

8b0eda12ca1d65eb3a9c4dc7ecd40898966987d8
SHA256

9cce295e9bf2c509f6fe73fd9c59334bde92cf2965ee54432c270718f28d54fa
SHA512

8b3e7be223415b5341eae4d7b17885fb860e0670b8afca1b12f715c67ac40f3243c87320374aff137a4446881e0cefe75f9095fbd8e92f6964e0f025c3f1d0ec
SSDEEP

3072:eJqdVEgg0tbUgDdpYJ4HFGjCQuez7SjJ2HWuinUndc1BvWLrQae0:eImCt42koGjJulgMMeB+ln

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  b14ccb3786af7553f7c251623499a7fe67974dde69d3dffd65733871cddf6b6d.bin
- Size
  
  155KB
- MD5
  
  14a09a48ad23fe0ea5a180bee8cb750a
- SHA1
  
  ac3cdd673f5126bc49faa72fb52284f513929db4
- SHA256
  
  b14ccb3786af7553f7c251623499a7fe67974dde69d3dffd65733871cddf6b6d
- SHA512
  
  3f11e6f0fb03f2857f29f4ba296dd4fdbda93938b1516a80c18d656d67175fec910727ca447c7217e8edf9a160d9c7c02ebd9f35081a0071247d572d960e9734
- SSDEEP
  
  3072:Wy277Ci2HMm3nQuTz5U0Ofr2AUx4bzWKeH3tMCmzsaz:Wy27mi2Hj3Qg112rhUxl/3thEse
Score

10^/10

evasion
- Modifies security service
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2