9474aaeda9320c71ee99fd7f4cc147157e9dbb41b3f6d12ce18f56d461b64148 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

AppxSip.dll
Size

242KB
Sample

240521-grvqwahb63
MD5

0632e0c9ca5b3e84433934280b939cb7
SHA1

baa77168aba975ea751c095471a0945c66eecd38
SHA256

9474aaeda9320c71ee99fd7f4cc147157e9dbb41b3f6d12ce18f56d461b64148
SHA512

1f1a9f2484bf39154bd811ab46c32b915e780179325934a712b46f9479a003973a380376cbeeeaec438109a24bc32a7173afd103d24a7f404617cdbaf26efb09
SSDEEP

6144:ifBG4+XIXXY5w2bZyHqy+Mt5jp3zQDsjMRM5mA4:UGrCIjcmM/jOsb

Score

8^/10

Malware Config

Targets

- Target
  
  AppxSip.dll
- Size
  
  242KB
- MD5
  
  0632e0c9ca5b3e84433934280b939cb7
- SHA1
  
  baa77168aba975ea751c095471a0945c66eecd38
- SHA256
  
  9474aaeda9320c71ee99fd7f4cc147157e9dbb41b3f6d12ce18f56d461b64148
- SHA512
  
  1f1a9f2484bf39154bd811ab46c32b915e780179325934a712b46f9479a003973a380376cbeeeaec438109a24bc32a7173afd103d24a7f404617cdbaf26efb09
- SSDEEP
  
  6144:ifBG4+XIXXY5w2bZyHqy+Mt5jp3zQDsjMRM5mA4:UGrCIjcmM/jOsb
Score

8^/10
- Manipulates Digital Signatures
  Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

SIP and Trust Provider Hijacking

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1