942fda24f1aa24508559b824f04d53615d61f54c93f05a7fb58045c7bd6bafe6 | Triage

Sharing

General

Target

bfcfd0b0566148b80d69ca97b0572270
Size

586KB
Sample

240311-ernlfsca9t
MD5

bfcfd0b0566148b80d69ca97b0572270
SHA1

16ade34498388bdc96eb26cdc40959d44afc28bb
SHA256

942fda24f1aa24508559b824f04d53615d61f54c93f05a7fb58045c7bd6bafe6
SHA512

ad82224c857f73fb90478b011831864b044cf546a624f11ec90faab7fbb2a3440b87226af9d0ff94c3c7ea052cb3c1e986d9b176590e62123c689b6e8766ffc7
SSDEEP

12288:GMTq+pmpwr3ag20N0dD8WHvCySwTj8UVV/AIQkO8cTQM6ZVPsqOO:GMTq+frqB0Aldb37VV/ALkzcTUVEO

Score

7^/10

Malware Config

Targets

- Target
  
  bfcfd0b0566148b80d69ca97b0572270
- Size
  
  586KB
- MD5
  
  bfcfd0b0566148b80d69ca97b0572270
- SHA1
  
  16ade34498388bdc96eb26cdc40959d44afc28bb
- SHA256
  
  942fda24f1aa24508559b824f04d53615d61f54c93f05a7fb58045c7bd6bafe6
- SHA512
  
  ad82224c857f73fb90478b011831864b044cf546a624f11ec90faab7fbb2a3440b87226af9d0ff94c3c7ea052cb3c1e986d9b176590e62123c689b6e8766ffc7
- SSDEEP
  
  12288:GMTq+pmpwr3ag20N0dD8WHvCySwTj8UVV/AIQkO8cTQM6ZVPsqOO:GMTq+frqB0Aldb37VV/ALkzcTUVEO
Score

3^/10
behavioral1 behavioral2
- Target
  
  ExeGuarder.exe
- Size
  
  570KB
- MD5
  
  0376d3434c1061dff7664d17d0809636
- SHA1
  
  1b6c2d1fbb1641ff968a3a38793c378daa89d54d
- SHA256
  
  1efca63f8a3c9a2064cbb5ce3c72d0c5a6570881e51308f63c9cdc074b66b77b
- SHA512
  
  63a42890f6fe2d8d1c3b208071ede74d6d8450ecfd8cf88c0e5e4bbbce499b71852ce36861079962a88a5994b897e8957f0cbb4a1e32b74c3141bd6662c1b3b7
- SSDEEP
  
  12288:flpYDzxpjpwx3tg2EN0dDyWHvCL4wUj8UVSBfu/+E9z:64xdBEAHuJA7V4fq+E
Score

4^/10
behavioral3 behavioral4
- Target
  
  help.htm
- Size
  
  11KB
- MD5
  
  ea001b5318a389dd82e76bf69621b679
- SHA1
  
  8ff36765dc8c94ce382b7c8f61c8ecaf9f30dded
- SHA256
  
  af47550b19b5fcb2001301bfcaef3d0f6a5a359f79b6584d3956a72a56e3921a
- SHA512
  
  93320d5c48711817bef33510d9edb00a03b3750bab6f8e66e5cd3ad18214e2308b0f6ed580a983b05ddcc2a8ce409f062c1413718044bc961e36d83821c62098
- SSDEEP
  
  192:8Ym9JGQtN74D+Ea91ArLgMXRdH/4ctc727vFA/iGKnZZCY:8Ym9k2lr9ZEt/rSLY
Score

1^/10
behavioral5 behavioral6
- Target
  
  uninstall.exe
- Size
  
  63KB
- MD5
  
  c9b44ba96847e330809e84c87b547547
- SHA1
  
  2fb9bd5c58d39fc6805354079e10b67e14a19092
- SHA256
  
  1cb1ec756b867af8710dd4d3bfd4c0f4197028fbf32906bc623d2a7023c82f5d
- SHA512
  
  48e06593fc4c5b1f39d733c23da87cf7aa9ddee56d2de586316d6f846c0322b3d0f49edd365227a360aef23fb1aec3da781b057894296337d0796aeae5b09015
- SSDEEP
  
  768:Ub4s6pIH65JbQRY63LVCIvFAUKWO95EnNz0D3VFS6sWkJQxOQc142FtWwSICP8nc:ijLaMv3xnCwNz0DxkJDQcREYRNmO+OCN
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8