958e705777f32549ed903b806754e1258ed85e8c39185b2eb73005692b2da31a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

nud.exe
Size

630KB
Sample

231002-gjflzshb99
MD5

d6dcea47ad46134b0967962dc1dbe41c
SHA1

8311682047b10afb14f5d4594645bc192edc48cb
SHA256

958e705777f32549ed903b806754e1258ed85e8c39185b2eb73005692b2da31a
SHA512

d23d929a743dbe7671791a39a19e643d65f9435ef8f0f3764193cb7bea7b9e7a29c2fc6e210eea909f729b7230f09d33671e387c8887ab8c49b39cec161fe3b6
SSDEEP

12288:CCYecBtGpkCUoRuSyolP1sQV87B1CQCiN/UeF3bRjhD7HNz:9/8GpkboRvl9ss8t1rN8eF3bR9DjNz

Score

7^/10

Malware Config

Targets

- Target
  
  nud.exe
- Size
  
  630KB
- MD5
  
  d6dcea47ad46134b0967962dc1dbe41c
- SHA1
  
  8311682047b10afb14f5d4594645bc192edc48cb
- SHA256
  
  958e705777f32549ed903b806754e1258ed85e8c39185b2eb73005692b2da31a
- SHA512
  
  d23d929a743dbe7671791a39a19e643d65f9435ef8f0f3764193cb7bea7b9e7a29c2fc6e210eea909f729b7230f09d33671e387c8887ab8c49b39cec161fe3b6
- SSDEEP
  
  12288:CCYecBtGpkCUoRuSyolP1sQV87B1CQCiN/UeF3bRjhD7HNz:9/8GpkboRvl9ss8t1rN8eF3bR9DjNz
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2