5e236acff828a79b31f44e491d8c4932a3eb6688ce83d24ed7f59fa69117cb6e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MandiantEngagementIntelAudio.7z
Size

630KB
Sample

230918-zewrhseh26
MD5

7d8f3cc7dd022adef6fc8d7dfe308847
SHA1

93599216ad58d501568c52c7014ad6f7fdb2561a
SHA256

5e236acff828a79b31f44e491d8c4932a3eb6688ce83d24ed7f59fa69117cb6e
SHA512

bc49f6e252bcb9aed5ded9c38d55c8370c1af74b89e97e4447eae63dde3f46c5bd485dba4d6f01887fab037ddbf06eea7e8370f3d310a5df0832b4848fba3e9a
SSDEEP

12288:yZrSiKCzrslrSexLyVGUOo4Pmbu1xN55WzpinfBwtVW7Afcoy1v3:4ZKCzrs4edyVGskv5WViJgV65oI

Score

3^/10

Malware Config

Targets

- Target
  
  MandiantEngagementIntelAudio.7z
- Size
  
  630KB
- MD5
  
  7d8f3cc7dd022adef6fc8d7dfe308847
- SHA1
  
  93599216ad58d501568c52c7014ad6f7fdb2561a
- SHA256
  
  5e236acff828a79b31f44e491d8c4932a3eb6688ce83d24ed7f59fa69117cb6e
- SHA512
  
  bc49f6e252bcb9aed5ded9c38d55c8370c1af74b89e97e4447eae63dde3f46c5bd485dba4d6f01887fab037ddbf06eea7e8370f3d310a5df0832b4848fba3e9a
- SSDEEP
  
  12288:yZrSiKCzrslrSexLyVGUOo4Pmbu1xN55WzpinfBwtVW7Afcoy1v3:4ZKCzrs4edyVGskv5WViJgV65oI
Score

3^/10
behavioral1 behavioral2
- Target
  
  IntelAudioService.dll
- Size
  
  3.4MB
- MD5
  
  49a1e60fa728cf631582610e7fab5aa2
- SHA1
  
  f8464b2e988ca5ba4a9a59d0327a2321ce991434
- SHA256
  
  2e03abdaaf7b4b503096e00b70c2e9142f2415340618f047a0ce338e62ca77b2
- SHA512
  
  0c16dbbf83fedca9381d9cc69cfdceaed8f023fbdc81a2e7aab40493341a83f1b7372bef5138b96fc5fb83bb6ee98de7f08d0152b5243db8049659a46fa054b1
- SSDEEP
  
  24576:ut2qjNxAlC4FP0bwug5vDIK/4MfdaXi98xEPn45U5LpoTHRERx:uvxQPsbe4fynn44do7RERx
Score

1^/10
behavioral3 behavioral4
- Target
  
  IntelAudioService.exe
- Size
  
  403KB
- MD5
  
  06838ede33411d840c3a0ff1846ea59a
- SHA1
  
  621ea73cbd4fec67b14834c9e96bb468b6d66928
- SHA256
  
  4511164f27333aef821da2aa6ef050b230b415859c4fcb2cbb4b7e5116be46a9
- SHA512
  
  74c3c1d0c005be4dc1e79a0a4a5a9a9d9109ba33be5e46d672d51f3ea15d6962498083bfc0185757e36de11cb3ad2346e5705796019222ce7f2cc13a43e381e9
- SSDEEP
  
  6144:hLH9XTbaAUwyYad/qtKYseF0XHWV+b4oZZw8bIDlW40uT:RH9XTbaJHYe/ejaHaIZbIDg4HT
Score

1^/10
behavioral5 behavioral6
- Target
  
  IntelAudioService.exe.config
- Size
  
  308B
- MD5
  
  e672c208b899e19473840b0a0e0fd6f4
- SHA1
  
  0e72b1ac55a6f2097578b02799a94c314d1e98ca
- SHA256
  
  b880e615bfb2a6c187aff785c6558664b2f905d1179f034b545d693b71c073cc
- SHA512
  
  ca23958533d956064f60da79bd3811b967b8cdaa60e73b054405bed971ed74af07993349995f7f21eb489501425e4b3b8e7626dea4e7252d799b34e578d92b2b
Score

3^/10
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8