ca7010b453502d8925e70736196f0d4af0fa6b0db913a2b803b67f1ee87735e0 | Triage

Sharing

General

Target

ca7010b453502d8925e70736196f0d4af0fa6b0db913a2b803b67f1ee87735e0
Size

118KB
Sample

240524-dt2qesbb8s
MD5

aa66ed22621009a9cac7e9ece12a6c95
SHA1

b6c4b49715a0760779b9ebb417c296ace49210ef
SHA256

ca7010b453502d8925e70736196f0d4af0fa6b0db913a2b803b67f1ee87735e0
SHA512

9d07d9f78fb563f297b965f2e2f8618c7f05454d58ace74a59482afa8b80991e4dc170b38f18028910adaabea2e013836971f653a79da60a620cc683fd0c45c9
SSDEEP

3072:OE9j8b3ZXgKC1hX//iASOXRJzDOD26j/3DcO:OEebiKuX//iZOXRJ3OD26jH

Score

8^/10

evasion execution

Malware Config

Targets

- Target
  
  ca7010b453502d8925e70736196f0d4af0fa6b0db913a2b803b67f1ee87735e0
- Size
  
  118KB
- MD5
  
  aa66ed22621009a9cac7e9ece12a6c95
- SHA1
  
  b6c4b49715a0760779b9ebb417c296ace49210ef
- SHA256
  
  ca7010b453502d8925e70736196f0d4af0fa6b0db913a2b803b67f1ee87735e0
- SHA512
  
  9d07d9f78fb563f297b965f2e2f8618c7f05454d58ace74a59482afa8b80991e4dc170b38f18028910adaabea2e013836971f653a79da60a620cc683fd0c45c9
- SSDEEP
  
  3072:OE9j8b3ZXgKC1hX//iASOXRJzDOD26j/3DcO:OEebiKuX//iZOXRJ3OD26jH
Score

8^/10

evasion execution
- Stops running service(s)
  evasion execution
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionexecution

behavioral2

evasionexecution