d1926fbcb9555d8d6cb824a5f95e06612bbfc82d948346221612607f62999cb4 | Triage

Sharing

General

Target

d1926fbcb9555d8d6cb824a5f95e06612bbfc82d948346221612607f62999cb4
Size

138KB
Sample

240502-ek2vhaad53
MD5

dc99061f09b1d84db24373c14a80dcf3
SHA1

2e1291768bd9485f7a598bc070cdbfba89eb52f9
SHA256

d1926fbcb9555d8d6cb824a5f95e06612bbfc82d948346221612607f62999cb4
SHA512

7a7bfc486f02cf2e64c8977da5ccea1a10cd11885ebfc697019d35a5e12a01dea643ed92734421a2f702126dfe1a2c72aacdf29ccd48cad4aeb20015aa953675
SSDEEP

1536:rC2/fYuPfbESFYXRWhpKRycRd57JkIqFHhzm4hWru/BzihhMN45MF5FvHP132xPT:r7YubEwYXRWhpAJUHhzm4hUukS6Kmecd

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  d1926fbcb9555d8d6cb824a5f95e06612bbfc82d948346221612607f62999cb4
- Size
  
  138KB
- MD5
  
  dc99061f09b1d84db24373c14a80dcf3
- SHA1
  
  2e1291768bd9485f7a598bc070cdbfba89eb52f9
- SHA256
  
  d1926fbcb9555d8d6cb824a5f95e06612bbfc82d948346221612607f62999cb4
- SHA512
  
  7a7bfc486f02cf2e64c8977da5ccea1a10cd11885ebfc697019d35a5e12a01dea643ed92734421a2f702126dfe1a2c72aacdf29ccd48cad4aeb20015aa953675
- SSDEEP
  
  1536:rC2/fYuPfbESFYXRWhpKRycRd57JkIqFHhzm4hWru/BzihhMN45MF5FvHP132xPT:r7YubEwYXRWhpAJUHhzm4hUukS6Kmecd
Score

8^/10

evasion
- Stops running service(s)
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

behavioral2