d1bdc429d88aaafcc9b67700ec1f5e326abe81ac3a4f1b8fd1b33c8facd73511 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d1bdc429d88aaafcc9b67700ec1f5e326abe81ac3a4f1b8fd1b33c8facd73511
Size

119KB
Sample

240514-c5lynsgc62
MD5

65d5472622dc4484fc8648e81db67b61
SHA1

12988827904fe225c468c921aa2d26475702507e
SHA256

d1bdc429d88aaafcc9b67700ec1f5e326abe81ac3a4f1b8fd1b33c8facd73511
SHA512

7d141bab8934a6e0217faa8427ee883c8e1b9dd13bad4f02de2504673368be01142783a6a11cf00ce98ea2112934fe52a2f9455f1ded5228048ece96baa6e841
SSDEEP

3072:OE9j8b3ZXgKC1hX//iASOXRJzDOD26j/3Dc+:OEebiKuX//iZOXRJ3OD26jB

Score

8^/10

evasion execution

Malware Config

Targets

- Target
  
  d1bdc429d88aaafcc9b67700ec1f5e326abe81ac3a4f1b8fd1b33c8facd73511
- Size
  
  119KB
- MD5
  
  65d5472622dc4484fc8648e81db67b61
- SHA1
  
  12988827904fe225c468c921aa2d26475702507e
- SHA256
  
  d1bdc429d88aaafcc9b67700ec1f5e326abe81ac3a4f1b8fd1b33c8facd73511
- SHA512
  
  7d141bab8934a6e0217faa8427ee883c8e1b9dd13bad4f02de2504673368be01142783a6a11cf00ce98ea2112934fe52a2f9455f1ded5228048ece96baa6e841
- SSDEEP
  
  3072:OE9j8b3ZXgKC1hX//iASOXRJzDOD26j/3Dc+:OEebiKuX//iZOXRJ3OD26jB
Score

8^/10

evasion execution
- Stops running service(s)
  evasion execution
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionexecution

behavioral2

evasionexecution