4da7d3f88a76a0349e3306e303a984b10906f797e6330aae6ddb4bdc66bb9cc5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

.
Size

18KB
Sample

240328-dq1nysbc98
MD5

1b1c200a5940365530a3259a6858564d
SHA1

f15d634e1ef3a0669c8b1b680747fa670a36c478
SHA256

4da7d3f88a76a0349e3306e303a984b10906f797e6330aae6ddb4bdc66bb9cc5
SHA512

d812ed9aebcb5d424a5a16e049c2b33ac41b95f723ab184e110dcada0dba4a90f7b7626c1ed6ea18c2a8d8744cd645f32a28f2bc01df4ef26e5c101b4f164688
SSDEEP

384:r67ADpmReVoOs4fN9ylKeGMPU8HhhbjFM7YaS2LjFrSy+CVJCBXQL:r6sBVoOs4fryI1M3BhbJ6TFrS6JQQL

Score

10^/10

Malware Config

Targets

- Target
  
  .
- Size
  
  18KB
- MD5
  
  1b1c200a5940365530a3259a6858564d
- SHA1
  
  f15d634e1ef3a0669c8b1b680747fa670a36c478
- SHA256
  
  4da7d3f88a76a0349e3306e303a984b10906f797e6330aae6ddb4bdc66bb9cc5
- SHA512
  
  d812ed9aebcb5d424a5a16e049c2b33ac41b95f723ab184e110dcada0dba4a90f7b7626c1ed6ea18c2a8d8744cd645f32a28f2bc01df4ef26e5c101b4f164688
- SSDEEP
  
  384:r67ADpmReVoOs4fN9ylKeGMPU8HhhbjFM7YaS2LjFrSy+CVJCBXQL:r6sBVoOs4fryI1M3BhbJ6TFrS6JQQL
Score

10^/10
- Suspicious use of NtCreateProcessExOtherParentProcess
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1