81f6d733aceb61d4b0a5232bf0a08dadebddd56e0473caf72f24d623c563c7cd | Triage

Sharing

General

Target

81f6d733aceb61d4b0a5232bf0a08dadebddd56e0473caf72f24d623c563c7cd
Size

138KB
Sample

240522-3rf4dadf2w
MD5

58b9169440a6b13ad0883200a49ed35a
SHA1

0df5d7faee37b8cadc09fc1fde95cd9780958709
SHA256

81f6d733aceb61d4b0a5232bf0a08dadebddd56e0473caf72f24d623c563c7cd
SHA512

be538d9825779b006a7d45ccd70c55b75ef41a9bcd55086e23550e842cdf6ca1258e3ed97c3c12b38b4f9c18f7b789d5e814033c6a76b78158484543d031f463
SSDEEP

1536:rC2/fYuPfbESFYXRWhpKRycRd57JkIqFHhzm4hWru/BzihhMN45MF5FvHP132xPS:r7YubEwYXRWhpAJUHhzm4hUukS6Kmeco

Score

8^/10

evasion execution

Malware Config

Targets

- Target
  
  81f6d733aceb61d4b0a5232bf0a08dadebddd56e0473caf72f24d623c563c7cd
- Size
  
  138KB
- MD5
  
  58b9169440a6b13ad0883200a49ed35a
- SHA1
  
  0df5d7faee37b8cadc09fc1fde95cd9780958709
- SHA256
  
  81f6d733aceb61d4b0a5232bf0a08dadebddd56e0473caf72f24d623c563c7cd
- SHA512
  
  be538d9825779b006a7d45ccd70c55b75ef41a9bcd55086e23550e842cdf6ca1258e3ed97c3c12b38b4f9c18f7b789d5e814033c6a76b78158484543d031f463
- SSDEEP
  
  1536:rC2/fYuPfbESFYXRWhpKRycRd57JkIqFHhzm4hWru/BzihhMN45MF5FvHP132xPS:r7YubEwYXRWhpAJUHhzm4hUukS6Kmeco
Score

8^/10

evasion execution
- Stops running service(s)
  evasion execution
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionexecution

behavioral2

evasionexecution