841a98464457d2fceff8a35e6b575b1e5e0681f7232cb3c2b94c698e38960a25

Target

Prefetch.zip
Size

21.2MB
Sample

240325-zxdnnahe48
MD5

a394e06a529a62d8a0ced7b5209378e6
SHA1

90414df61e25dbaecc31fbb0beba6edf2f159520
SHA256

841a98464457d2fceff8a35e6b575b1e5e0681f7232cb3c2b94c698e38960a25
SHA512

6138832ff04c7f556b84b295d671f164104f905770a8e4c2a58c7855cfb8e42b31bf9daa5ad59964e34d7c82a0f5f760564151b1219bb1931c601491941c670a
SSDEEP

393216:jzAM2Eb2nznrCzQDkD7DbxxTfQndqURaAfOXxM4k5TZfZhmKX38FvCv:jz4wozrCssTEs+2XuRF8Fve

Score

3^/10

Malware Config

Targets

- Target
  
  Prefetch/SVCHOST.EXE-840ADCD8.pf
- Size
  
  4KB
- MD5
  
  bca8b889ea206712d976f419acc0b7e8
- SHA1
  
  39baf44b0f57bacffabb5d5a36ca27cc8429d089
- SHA256
  
  814feba5c097f6fcefc598b681a8c82fb9c3d186828a816fdc0a95075d699e38
- SHA512
  
  361690bc2cbdaef3a925b9f42cd840c563082959a6f722f46ca550214ed49b9178fb7229400b712162c41cd35da58face7ba70043f557c802b8a1eff7a708b9b
- SSDEEP
  
  96:Q4me4Rb4ITSm6LH22BRM+ZsZOTxAwGjCTGAkLIxEaBbdUOR6h:+e4xZO52sZssVWCTe0OSBUORA
Score

3^/10
behavioral1 behavioral2
- Target
  
  Prefetch/SVCHOST.EXE-8C0617FB.pf
- Size
  
  7KB
- MD5
  
  1454b5855384793cb814570516f6a486
- SHA1
  
  e9906bde07f0a8cb3487544cc65a7cf6a731f083
- SHA256
  
  ef728e4513122e47a939d1511428a293615ab8db1a31aae55ef9c28e8e561e0c
- SHA512
  
  a8bcd630ed47281c3a977bba064b34077f541b5abab5e56ac931516225231582ca0aa32e6c4c21d4144847f538523ea6a40da7cd693d5709daa4a4e088281be9
- SSDEEP
  
  192:R+9O84YJRMWQqLqublMO2AbbNTotKkfZWrnPcbOdFFPR90WoRot:RFYJMg52sTWcLPrdbPMNRot
Score

3^/10
behavioral3 behavioral4
- Target
  
  Prefetch/SVCHOST.EXE-8C737072.pf
- Size
  
  5KB
- MD5
  
  c7510169aafaa763c867e059cb78d384
- SHA1
  
  026e08be5af33b8b182575c68bdf173d4d8cf9a9
- SHA256
  
  5a945f7b79160c0650cb2707588cc9fbaf957d1a19b4ccdafcfadb99fb1e559d
- SHA512
  
  56aa295ad8e67bec1187910f207b695946bf7a1c1e9c003c3873a4b0b1f5005c8b069576b14888f4790769e26abfbe7e3d16ccb24265886de694665d98c11c53
- SSDEEP
  
  96:NhK4utQX9KjMfWmwB+M/ISOgQu2RUfZNJ2WHgOyseKU6r1CgNk/xuUGXUc7ElQkO:NhK4utQX9OMcBJOu2RUfZNQAgxsJjexc
Score

3^/10
behavioral5 behavioral6
- Target
  
  Prefetch/SVCHOST.EXE-8E6D2394.pf
- Size
  
  5KB
- MD5
  
  5b393a59d963af77be8d35440efeaba4
- SHA1
  
  ba46eab04c843c4108fbaff512ff61805e3efb84
- SHA256
  
  67cfda06fbd0c122d46070d140965a13908131bcb9819dcfa11bb7c44ba0101b
- SHA512
  
  0d99397c12e2c96601725e3232062219f048dc790a8c1c3e08e7bcce90a0c5e9c3eae4ba2435c5777557a35dc74d80066bef918dcbb934b4db7b788b6cdbf171
- SSDEEP
  
  96:DY2ssExwP7d4vRWBVsi2vns70zKQMjbQNjaLw6tY710ysrpsu9i3mo8MPQz:DNiwjd4pWBCBvsoMfQN0y71orpswW8Me
Score

3^/10
behavioral7 behavioral8
- Target
  
  Prefetch/SVCHOST.EXE-99566FA1.pf
- Size
  
  6KB
- MD5
  
  483719e0e3749f6a9be1e1db2d8c8012
- SHA1
  
  eeec66daeee1fa2e0c39529632009e2220f0cb8f
- SHA256
  
  f51f2e3cbf75aada9432e9e8628e88b1375c5843f6827e499fd183572ba2125b
- SHA512
  
  9c6e8c0b09cd636aa749fdf2154b2dd032f6ed89c1a66e58c8c587256b208c314034a96486757dccf194c27fa30f80160825a387badac958018714ea26088a49
- SSDEEP
  
  96:cveRbSWrxNP3e3Heq+b+KNTLYHEk25Bk5aotLg4DNj/jduVx7qteNiOG:mkbSY3e3eqs7Bq2fkgSDj7ozWeNiOG
Score

3^/10
behavioral10 behavioral9
- Target
  
  Prefetch/SVCHOST.EXE-9BA3717F.pf
- Size
  
  33KB
- MD5
  
  25a6878ec32c1911f0b5221b2b0cf57e
- SHA1
  
  9710bf396dfa0e4397ae94eaa5313778cd32e759
- SHA256
  
  d0e120d79176d3c92273baa52c1f76e413f7c1588d2ccb6c484acbe63d5626dd
- SHA512
  
  fecc37bd02c75470937464eaa2ad84ebe7beb574eeeedb7ca1e791f7813d6039064bbb02b617c0e5b7a295c1864dca73fc1eff277cef4e1028493475789f81f4
- SSDEEP
  
  384:xkpk0ZVPUBRfjChDP3/+W92SZMtSvwXOmx7nFpgWuy6EE6hxVQT/T7BYB65M4Vv1:xUqfjChz3BqSvwXrxAEDMBU65nElY
Score

3^/10
behavioral11 behavioral12
- Target
  
  Prefetch/SVCHOST.EXE-9EC0735B.pf
- Size
  
  4KB
- MD5
  
  c1aaaf6be346e019483f07c1524c6b6b
- SHA1
  
  0949f1ff1b3a9212a725aaaa8db5118d007a88ec
- SHA256
  
  0155de55b1c9594e865a0260d201324bccb5d0fea46009f16f3373a666ea64d6
- SHA512
  
  5120479910d73974cbc8228720f7aa403861c3484492c2d811e06897967a465f1db72e6cab3ee0208d1aee182157b7a2deecb83cd39f36043d27dd988b1ec1ca
- SSDEEP
  
  96:FqD3+fPenJ8LGxno90rvTbVEAZjt5CwGvbUTUysagGQR1Mg41:/GJ8KXrvTbHYZhTt41
Score

3^/10
behavioral13 behavioral14
- Target
  
  Prefetch/SVCHOST.EXE-9F82877C.pf
- Size
  
  4KB
- MD5
  
  efa80bfbf63467e7997eb13126c4b7c0
- SHA1
  
  69e87d47c382e73a4aea164ae18a30fd71b603a5
- SHA256
  
  bceffc35472caa85de40de428bcfb2475ca1a22badf9c4f12bab626559ed7f89
- SHA512
  
  f7a2a18e6a99275793a21329c1e79ac52ea3d9c32782a149835085f70ee9721f415d8afbc72a3b83023085bf327a4697b5f3f818437126403cc74763ef22437b
- SSDEEP
  
  96:mbdmzFvQ3VgDffqv8bHxnarDs6pq4BgUx87pQJAR0gZeIffKJ:oMvawS0blarDs6pqMJ4QvLIU
Score

3^/10
behavioral15 behavioral16
- Target
  
  Prefetch/SVCHOST.EXE-AE1E0CAD.pf
- Size
  
  7KB
- MD5
  
  bf4f34f18b06594fd47d3f49ac96fc19
- SHA1
  
  611a05483487c80736ebd09fe08b3be35a04c4e7
- SHA256
  
  3760d6c0ca0e4d6ce72bb9acfe65a59c2d5bca677db9c2ee57956ea0772bbb9a
- SHA512
  
  9ee28603e14e670b67ae7e4cb010af447565668187ffdba479b01ba450a4a04db61ceadf533bec5c37c97839bdd54fae03a1ba1dda160c6aa19581c76c03393e
- SSDEEP
  
  96:cVdGDfcabtx8D9tw2ddXgy5mmX+5+0dgtmG9wSpIX8tps9/FwA94luXIUGXgExVd:tfc1Ngyomy+06sWwmtpsRF9qXpxKAJ
Score

3^/10
behavioral17 behavioral18
- Target
  
  Prefetch/SVCHOST.EXE-B0BE7DB7.pf
- Size
  
  12KB
- MD5
  
  761a9c6028b23dec5e9d9b6f73fcad3e
- SHA1
  
  7a376e029cffb96ab8487cc7ee24401d091223be
- SHA256
  
  557f84e7368bc05376d1c2546ef77909234400d10b3e356763a5a288aeac8b45
- SHA512
  
  5ee66c3f3c73d97c557a1e0caf00514fe92047ed36adf3e079e9666c1f6fb1f5c4d04268e32cb53f84a63442308ad28e6344d7f47e5f19a251eb6ac2f14b179f
- SSDEEP
  
  384:1vTDyw3DdybczbN+lWL6uWejWTxobcuThzA3jpVQKBZ:1L2mRdN+lfurj8WzqQkZ
Score

3^/10
behavioral19 behavioral20
- Target
  
  Prefetch/SVCHOST.EXE-B1C43117.pf
- Size
  
  9KB
- MD5
  
  e33dd1232fa487297ef2a05efb4121ae
- SHA1
  
  9a9a7fd378203f4f49e5c1f882c24cc6b7378705
- SHA256
  
  ebc783f8723414bdcf70434e0f1c9cf0fb628b59ad9af1c5f3a497cf60bf8880
- SHA512
  
  9aec8d74b57952b39db6b61666706518c195f3c3fbcad2e4c3ca5c1bfc775ff4e60a1ec069b04c230e23334940d64482300a27eca67e069f2b89dd3faeca70fe
- SSDEEP
  
  192:0KrKUh7aiksB7C74NiAsxzu7+aWarDk1zmmt80Fjosb/lO:xrXN11W4UAozDaxrDk1zmmt8Kj9NO
Score

3^/10
behavioral21 behavioral22
- Target
  
  Prefetch/SVCHOST.EXE-B6CF74F4.pf
- Size
  
  7KB
- MD5
  
  9f3521d87977090cdd48734438ba3880
- SHA1
  
  2895cd53633c4093eb3c893a5ef688cba4486e15
- SHA256
  
  52ae263c875256bc09f6fb8190398998b42d62ac06a1da0b4e878c2007495ae9
- SHA512
  
  eefefc15965b2eb4c7b9117e2acd40588d149acaa036d1b994f57b255fb9fbd7104f163fe5f2f73c3716a641790f69d6dcfdd7d9b81e8124d29c5904d37bafd9
- SSDEEP
  
  192:G4hrbFz9Ut/hYDfrW0Qk5HjsVkh/G6/4+j9PMipRN:9h/3UtO76dosVlsHpRN
Score

3^/10
behavioral23 behavioral24
- Target
  
  Prefetch/SVCHOST.EXE-B878F4CD.pf
- Size
  
  6KB
- MD5
  
  c2491b8f7d2cef32d879072669c8164b
- SHA1
  
  c7f44ba6b814c02c6cc2a7f7de1d4dc05088c78a
- SHA256
  
  dad373cd5077c25d752cbb18333cf3d15735f9e50a5428a59f7b10aed9a69955
- SHA512
  
  339ac91959f04a3b7276ee40b77504f0256c68b0ec1d39ad1e3d83d44e955c07f1795fe9559f96e4ff2037f3fb0789a93d8c3cce386bb5f3cdac4ba8947852bc
- SSDEEP
  
  192:sKElmv/0shBGcYAiY94lbuWw4q0aqXltW7GS:LlH0snrZRZz0tXlYaS
Score

3^/10
behavioral25 behavioral26
- Target
  
  Prefetch/SVCHOST.EXE-BAF02086.pf
- Size
  
  4KB
- MD5
  
  f32bc74db0bd5714ca16118b1d72ae34
- SHA1
  
  37fb6f5e3c73af8ec05506f815879a6239d77ae4
- SHA256
  
  fa6956b37b9cd85547a322ff8505d72b8e6f1609c2b55f830480b8bf63ae44bc
- SHA512
  
  a1593c521b9ce4d732d3f6a135a8f927d3281dd56d94353c149831599bcb86db6323fabdeab8e992ca8545b0da5e8427f92190cd4ce00a6e93b5b7c9e528cfa8
- SSDEEP
  
  96:q05cAqlssduourp72vuYftkvY9D4s7Iad5c030/5/hxFHLv5gabqxDFAQ:q0cAquzjytkvCksX40k/5/hxFNtbqxDJ
Score

3^/10
behavioral27 behavioral28
- Target
  
  Prefetch/SVCHOST.EXE-BF3D5CA5.pf
- Size
  
  4KB
- MD5
  
  b58ff2e514847ceaacb86ca403d36a8f
- SHA1
  
  5b291ca4bdf77c0fde0d59edadbe8d13c5208964
- SHA256
  
  1a3c34f7eb69559e3fbad92b4e6f56072389f7329244c5b4d544797a552b3c3c
- SHA512
  
  e9316093e3d26719b5bff76f72d872dcc38a30fe335eec72c9cf368ac169be0d712d93ecc26f4bb8402efea78404a9c86238ab05e5ae58aec39c0495f7db0975
- SSDEEP
  
  96:wIzyA5oeWZH1/nGDaUwE7FFFPF7NRF0akLMKOB7wvEf2y/D247d4vFro/Iyg:wuyTxnGRP7DFPpNReLTLvEfJ647d4dr3
Score

3^/10
behavioral29 behavioral30
- Target
  
  Prefetch/SVCHOST.EXE-C25134E6.pf
- Size
  
  30KB
- MD5
  
  9f8028d312b8e5c024a3a0dcfd9e4a4a
- SHA1
  
  017875beb678381d00642b31d8055e6f29d54106
- SHA256
  
  0645a6a19ab4b4c417a450a47880cc9818b63f1b838a5775a019ac6e202ccc14
- SHA512
  
  24d8bcb656b4d284fb0b83294222de1044f66ae7fa466f7668e048b335cd340be770ced889aa02a9ce1cbefa219eaa1dc6a8fd01241aed89e49e0ca2adc45e1e
- SSDEEP
  
  768:zUX/u4BokOLoC8wU18jAIGt7F4eh/BFUhVvzhyOf4F5mG5x:zUPuJcCE87cXmvFt85x
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32