b9f723a888dcbfe931bdc979e6f9b6b7c26cfac1909e7a9a1a02c358421dd721 | Triage

Sharing

General

Target

b9f723a888dcbfe931bdc979e6f9b6b7c26cfac1909e7a9a1a02c358421dd721
Size

138KB
Sample

240617-bxbbjascqq
MD5

5d8d92fbda0b38017fd587d050d31b9d
SHA1

85435615eed52c53accc0f4d421a0fef76de08f9
SHA256

b9f723a888dcbfe931bdc979e6f9b6b7c26cfac1909e7a9a1a02c358421dd721
SHA512

d6b1a3cee19d6d27f7aba480551b8203c1ffac88425ec4557c81aef7629aa974068af64005a9233bcb78c3364416b941edeb650049322b475ded800f654449cd
SSDEEP

1536:rC2/fYuPfbESFYXRWhpKRycRd57JkIqFHhzm4hWru/BzihhMN45MF5FvHP132xPY:r7YubEwYXRWhpAJUHhzm4hUukS6Kmecq

Score

8^/10

evasion execution

Malware Config

Targets

- Target
  
  b9f723a888dcbfe931bdc979e6f9b6b7c26cfac1909e7a9a1a02c358421dd721
- Size
  
  138KB
- MD5
  
  5d8d92fbda0b38017fd587d050d31b9d
- SHA1
  
  85435615eed52c53accc0f4d421a0fef76de08f9
- SHA256
  
  b9f723a888dcbfe931bdc979e6f9b6b7c26cfac1909e7a9a1a02c358421dd721
- SHA512
  
  d6b1a3cee19d6d27f7aba480551b8203c1ffac88425ec4557c81aef7629aa974068af64005a9233bcb78c3364416b941edeb650049322b475ded800f654449cd
- SSDEEP
  
  1536:rC2/fYuPfbESFYXRWhpKRycRd57JkIqFHhzm4hWru/BzihhMN45MF5FvHP132xPY:r7YubEwYXRWhpAJUHhzm4hUukS6Kmecq
Score

8^/10

evasion execution
- Stops running service(s)
  evasion execution
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionexecution

behavioral2

evasionexecution