General

  • Target

    a38d7362ce3de868db7a0aff5065b93f

  • Size

    114KB

  • Sample

    240225-mjtrhahe99

  • MD5

    a38d7362ce3de868db7a0aff5065b93f

  • SHA1

    eef63da30700cc9b69ce06455b22a4a11dc3bb79

  • SHA256

    13b9e47e1e882aa27b3208f93c58f546e746a03908275bf6a788307956bc57c7

  • SHA512

    add23fcbeaf923427a8a4d9f84d0520369a85e44fcc6a42b68834aa81b22c4e0c6f9df986ef8e45864457a68c0753445cc3ab76335e4eccc274dff9e37ef9a43

  • SSDEEP

    3072:6jl6Nc7yRzs1H75wkZUgsQ6NqTBun5oRa8ikW0brzQ7ITkrIjhJtXwCu:Yl6Nc7yRzs1H75wkZUgsQ6NqTBun5oR1

Score
10/10

Malware Config

Targets

    • Target

      a38d7362ce3de868db7a0aff5065b93f

    • Size

      114KB

    • MD5

      a38d7362ce3de868db7a0aff5065b93f

    • SHA1

      eef63da30700cc9b69ce06455b22a4a11dc3bb79

    • SHA256

      13b9e47e1e882aa27b3208f93c58f546e746a03908275bf6a788307956bc57c7

    • SHA512

      add23fcbeaf923427a8a4d9f84d0520369a85e44fcc6a42b68834aa81b22c4e0c6f9df986ef8e45864457a68c0753445cc3ab76335e4eccc274dff9e37ef9a43

    • SSDEEP

      3072:6jl6Nc7yRzs1H75wkZUgsQ6NqTBun5oRa8ikW0brzQ7ITkrIjhJtXwCu:Yl6Nc7yRzs1H75wkZUgsQ6NqTBun5oR1

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

    • Process spawned suspicious child process

      This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.

MITRE ATT&CK Enterprise v15

Tasks