Overview

overview

4

Static

static

3

background...st.exe

windows10-2004-x64

1

bash.exe

windows10-2004-x64

1

bcdboot.exe

windows10-2004-x64

1

bcdedit.exe

windows10-2004-x64

1

bdeunlock.exe

windows10-2004-x64

1

bitsadmin.exe

windows10-2004-x64

1

bootim.exe

windows10-2004-x64

1

bootsect.exe

windows10-2004-x64

1

bridgeunattend.exe

windows10-2004-x64

1

browser_broker.exe

windows10-2004-x64

1

browserexport.exe

windows10-2004-x64

1

bthudtask.exe

windows10-2004-x64

1

csrss.sys

windows10-2004-x64

1

mshta.exe

windows10-2004-x64

1

msiexec.exe

windows10-2004-x64

1

msinfo32.exe

windows10-2004-x64

1

msra.exe

windows10-2004-x64

1

mtstocom.exe

windows10-2004-x64

1

nbtstat.exe

windows10-2004-x64

1

ndadmin.exe

windows10-2004-x64

1

net.exe

windows10-2004-x64

1

net1.exe

windows10-2004-x64

1

netbtugc.exe

windows10-2004-x64

4

netcfg.exe

windows10-2004-x64

1

netiougc.exe

windows10-2004-x64

4

netsh.exe

windows10-2004-x64

3

newdev.exe

windows10-2004-x64

1

nltest.exe

windows10-2004-x64

1

nmbind.exe

windows10-2004-x64

1

nmscrub.exe

windows10-2004-x64

1

notepad.exe

windows10-2004-x64

1

nslookup.exe

windows10-2004-x64

1

Resubmissions

09-07-2024 13:39

240709-qydwdayanf 7

09-07-2024 07:52

240709-jqdr3swdle 6

09-07-2024 06:42

240709-hgkzcs1bjl 5

09-07-2024 06:34

240709-hb2d6azhjn 3

09-07-2024 05:47

240709-ggxgqa1crh 4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    application.zip

  • Size

    199.1MB

  • Sample

    240709-ggxgqa1crh

  • MD5

    3ff2cfb0d40a8d203dbc8e7e213abfd1

  • SHA1

    51e29901a0e5f7e7c93b22ef07f9ecbcf038fcea

  • SHA256

    9df41ebe1a2c61bbc382a85a7788e127e4dafada4955a1b6c3dfcaf460bd714f

  • SHA512

    a8ca689dce70cad02d3a438fab918b143699eb27c22f7fa40418ea26b154f93db4f99b4611a597720bc0c72933f458c98e3793af800e991ecc783a21da4c466a

  • SSDEEP

    6291456:UOriWJ0ns9w5OrSTi87nm1o/h6aXXRhevjJiEmRA:UOri2qnmwHhhXilixK

Score
4/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      backgroundTaskHost.exe

    • Size

      41KB

    • MD5

      0130864049ea1deded8df354dafca2ae

    • SHA1

      e3ce7157dc3334a1d95f2aad137d9ca66160b71c

    • SHA256

      4c8915e07be1904a3bc02e4f8db0a80bb932ce610d97eabb9151b4e51f449980

    • SHA512

      6006ffc4ce93e59a6004f6207bc28ee9b64594e30161bfd91ead1ab3d86d1a1ec72890bd38f26a060144d2ece5583f950f9e22fe44a4b06e14f1fb3b4259b6f5

    • SSDEEP

      384:g4uJlxkv2cHwXDWKGWXDBRJA2LCFYj9R9zLm5:rScHwXhP1PBQYj/9zA

    Score
    1/10
    behavioral1

    • Target

      bash.exe

    • Size

      132KB

    • MD5

      eb5125a7992dbc1abf82391cd0a02671

    • SHA1

      9d28610e0827e9283a94fcff8dcec638f870849b

    • SHA256

      52d3874427ae0a4904bd65ab97af74155896b00ccb25f0f8362861f9a2065445

    • SHA512

      dff30d0bb0d992950886df660d55408cdc448b7dfda69881d9b36b7387fee2686f17fc09c8bee3f5037489a8af4dd366686746c9fec402095c7a6e5597abb31c

    • SSDEEP

      1536:nF7QQfz5VPSOhXRk+woV4io4CoHVpBxtee6i9EZ4U5FNCsyl1qcAuqVYlH08ep33:FFSOXVwoL093s40qqG3Rdj

    Score
    1/10
    behavioral2

    • Target

      bcdboot.exe

    • Size

      260KB

    • MD5

      fafe59ccb8834b0235988d9ca110bdd0

    • SHA1

      5a7e7ac0fe95a2d16734e1773ea40b0dbfe2e692

    • SHA256

      54f7fa09e805f9b1ddd36069a7169d9d1e58f4a2206e8c69eb072bb34c90c4ee

    • SHA512

      4cf4cb629e42e3f6abc545b03d3974994087cc23d8b7855c8130f5f05a8c478cf39592751482d1adf6d65573868b8c4388600d704a3582e2e30720b1fdf68d97

    • SSDEEP

      3072:vm0YrURvhjckbPeGQgsq+MWMdJgpDOm+Q6FeAkrR9TAU502mgCF5uzwlm:vSrS5jc+fs7MdyJOm+Q6FeAkcczw

    Score
    1/10
    behavioral3

    • Target

      bcdedit.exe

    • Size

      489KB

    • MD5

      9351315cf99b7d3282d455a480e4309d

    • SHA1

      c38edd89bfc8cbc8ffa6512d78f5f8fd7e666ce2

    • SHA256

      dac99fae6da15421f9d61bbd3cc18d459177d5a8169671e572948f0cea8318dd

    • SHA512

      e8ffc0e657aff9186c768b6a410baf4342813a14dcc7d21d33727f1cffbf258e8b0a8e76042e678a92d5a29a1fa5759c8f9f9157f1a7df4bc1357b91d38c1c2e

    • SSDEEP

      3072:sBzD0KM7tMuSthiacYXLRf708VbW1zNjlJafASifZaWWHzKi0G7N1fjJU8q0gntZ:sBzoKM7tahzLdo8hGzNZ4HoZC5f7cdp

    Score
    1/10
    behavioral4

    • Target

      bdeunlock.exe

    • Size

      312KB

    • MD5

      a4fccb35a09c90e7e0cd2a789aed9e2b

    • SHA1

      61e11e564fa6239ddd9529b35bd1087a20503dc1

    • SHA256

      f52e19ba4da44ab3ca36ffd388a8af158e15d48351f0dafd9edc5394f78c2fc0

    • SHA512

      85abd2f6cdd9cf567d154e8ca5bc18c6a28f5c46af9387b448d9bc815a22d121eee5673cdd9c54cd50b897c977a31cd8eb715ee8b320e5fa01ecdc4f99dfa5b7

    • SSDEEP

      6144:Rs+fwkS6CbJkDyVRXvaD5FaWQllgRbPD/pyul933EZGzkJT/NeB8wZ2Vs7nyatGJ:Rs+fwkJCbJgyVR/aD50WQllgRbr/4u94

    Score
    1/10
    behavioral5

    • Target

      bitsadmin.exe

    • Size

      232KB

    • MD5

      c62b04c717a3ccf25d0c44ba97c2a6aa

    • SHA1

      650e20291e029626e76551fb8e92da75fbb1eec5

    • SHA256

      7c2365b752f8d2708c737bc34260d5f3d1568fdd2e12892d3ca3e4952add0230

    • SHA512

      ae8c403cd2733e610c27aa77ed2e8281219f547dfa85f4e305d9cff4e98c20b7793b06dcdffcc60a6bf17b124e0b3301c86357daae862628de0feb4ba4208cfd

    • SSDEEP

      6144:wje00Ti+0VrfulK78oTK+JK0v/VysZ6UT:wq/W+0VrfulKYqj

    Score
    1/10
    behavioral6

    • Target

      bootim.exe

    • Size

      48KB

    • MD5

      7bc9fc5bd560b3a28f32372393f94c44

    • SHA1

      4d2ecf1eeefc5cd161dcd4a8160cb5b35bf932f9

    • SHA256

      b5390d893f01239dd03a331e882c570277a7d6d82c3ff7dc07391401160644e6

    • SHA512

      a344e5a876e060dd71f2899a6ce23e58d49ba9a5c0c4390e2a335eed8fe105ffdb07c48980b85e97624503889937d734e9c99db8e5606f24398b6ff7e34d04ee

    • SSDEEP

      768:B9sPpumPNYqamVO/hnGNeoMU12ETAAR2UrwG/i:Yp0b/hnSeosETd2UrwMi

    Score
    1/10
    behavioral7

    • Target

      bootsect.exe

    • Size

      105KB

    • MD5

      68c39a577225aeb6b28ea3558e683c19

    • SHA1

      0504785549d7a3ac936c425b14253f779e580bc3

    • SHA256

      6a4e0396657ace212c955b4c95ddc357be66c2c9968dcd7a909bf4cc32f59841

    • SHA512

      fdb7398aff07be9630be5f8d6e8f415c22fc363fae9f6df816a72c6fbef7b93fe3def26a2f7dbe755a5035fb8efa912022eb80a514f8f04a0a9b25c90e8b557a

    • SSDEEP

      1536:0jzmAqtyFjEIPOhHK6iSlrKcBx5kIc3JGP1nXzMR:kqAqtyFjEkAqclrJdF6UdXgR

    Score
    1/10
    behavioral8

    • Target

      bridgeunattend.exe

    • Size

      44KB

    • MD5

      64873a6f5d4fe7f753fff7027eae6c18

    • SHA1

      0d083a4c649aa0bd4e1ce43e5224a65051dc9507

    • SHA256

      e0fa354b86b09593c572782691bccc4a1908826bff7bf163890fa96294876ff5

    • SHA512

      e91ba40235f40833efed0cc9aa06cb67f4a74a5b8a56fc9b1a16217da1a34e8bcd50c8e3e608ff7e6570eecfcf606a06d0925616f441d1df07348e87e8a25d58

    • SSDEEP

      384:FeChSiai5jda2QgNwhJ/KX6Vd1On5l2RZypTnXfY/ki0TWkfWps:5KWWywL/KXm1On5l0opTnQ/mb

    Score
    1/10
    behavioral9

    • Target

      browser_broker.exe

    • Size

      65KB

    • MD5

      a086c8f3e50316a6c8de68d5bb04e44d

    • SHA1

      719e3a8217d43ea44c0f53f583afe1a899205ac6

    • SHA256

      30e612e91d30055e66e7b6d1b1054e283ecbb229621ccaae304192f94c4226f6

    • SHA512

      b1418b667d2019dab3c4d070a85aa1f9996f49287596e665893e5c577ba94c60c21e3a99b2f40b1ae749caefc9e0df8a80cf276c5ae7cbd1344b8d9b7efb789a

    • SSDEEP

      1536:d+3jhnW3pG3AgqCXsRf0tgnNIgmQPtIGRwsLPvmVzQ:M3jx3uDJmYNIZqt9RwIkE

    Score
    1/10
    behavioral10

    • Target

      browserexport.exe

    • Size

      152KB

    • MD5

      3ba96dff77126450742ad98c9a4182f2

    • SHA1

      13858a746641602fc842a354b553f459055e5fad

    • SHA256

      72409ff79f3fc66ac6aab5dbc3979ee25f5af8d34860d03fe9ede7de76bdc7a2

    • SHA512

      22c6a203f92a27fe76139b90b4da044bea6c564f9f1f0364eca806e32e8047ab787e8dbab16d6152067638b90db6ee1327f7eece1b221b2504f4cbee06294e6d

    • SSDEEP

      3072:fl7v3zsq2rCFA9e+jMguOQ7r+PeaIsbNbPbMsaJ9ayl5FPF5:VgqtA9e+j/5Q7r+WobPbMsUb5FP

    Score
    1/10
    behavioral11

    • Target

      bthudtask.exe

    • Size

      64KB

    • MD5

      fb8820ecbd54852073128db33244d171

    • SHA1

      498bca20ffe2084acff7e0d09c9eed979b74459b

    • SHA256

      7441be48fa70ff34284db20b44780daec8ac9e1d706c397a2062c44deb36f36f

    • SHA512

      db5a31cfcf1fb279fdf7d991d3bdc2992079afe59fd00589fd2b28d30c525cf1b3defe38bf5cdf98efdbf4d47926f963bd828284786601e16711ae616a8ac3da

    • SSDEEP

      384:qCdtYiBaOpBmfxgNVN/g5UsWW8HWcKJajXDO1/EagS817l:nggBmfWVsUV9zDO

    Score
    1/10
    behavioral12

    • Target

      csrss.exe

    • Size

      37KB

    • MD5

      696fb9d7e43f428634f31cf56361d7c3

    • SHA1

      9006ccac001d1352d004788ac1d134bd266a82d7

    • SHA256

      eac814cee400a078e2d549ba6e3d7bd09d1bc9805a1c6c9ec0610a0e558472a1

    • SHA512

      da9f91fccb0038b0a06a27f1a2e5481907727fab1c963b325d4d663e351f750640c52d4d19770b7cee151d0ee3bcefaf9dc64fe8fef4f355f81a96bb64315070

    • SSDEEP

      384:eXRMI/nW58nW2eG0mBDBRJiWq0Z1Z0R9zbPpk:2MohrTDB1Pi9sZ49zdk

    Score
    1/10
    behavioral13

    • Target

      mshta.exe

    • Size

      32KB

    • MD5

      36d15dde6d71802d9588cc0d48edf8ea

    • SHA1

      6faf6bb6b8dabfedc1b40926801144ac95ded2a0

    • SHA256

      7b70b26081cfa5fae721f6e0a63960034d25cc94d157cd649a4e9907b5af37ea

    • SHA512

      4da085462b92b305a180f28b52f58fe277075ef13f6d6cbdc8f031e5c69ec3584ca1d8b1be7311a436e343e10bb8bafcaa60401d5907dbbfa4f73a057498c51a

    • SSDEEP

      192:GXrTKjnKCXyBNLYUK/3vdFeZm8EJ6nPWwU/IR:GXCrXXy/m/ylFWwU

    Score
    1/10
    behavioral14

    • Target

      msiexec.exe

    • Size

      172KB

    • MD5

      302be4b7434e679769029c8570825cc0

    • SHA1

      f3d7fee4ced78e37f49ce4e38ac681f07bca6ae0

    • SHA256

      5a31ea6a517a065166fafa01a0ac6a350d0e2dcba1b6dd4fdb41ae59109568e1

    • SHA512

      080f1d4bdb6124c261bc8a060e7676158007aa842ce7f15f0a8a6cf90de21961f23b42c788d2628dbb7db265ebec1d506fd530d2d828caab35f2bcb9f454f76d

    • SSDEEP

      3072:TRZHxKGLLqVcNnB2eA8uTx4rCw76i3Ix3V8xOTIKOZDBZcBk:NZHxLqVcL2eaw7D3IkxsIKABZcy

    Score
    1/10
    behavioral15

    • Target

      msinfo32.exe

    • Size

      356KB

    • MD5

      0d641f870c2f96ea23fff5f4ad395e17

    • SHA1

      cd66e72e76a75b3bc9ce680c34ba424bd6bcbaec

    • SHA256

      0d3345f38ff8291b8ce6a13331a6128c48f5ff8176659cc320e304dd32b0a491

    • SHA512

      237c1c37b606e80c1515e4b021e131bae8ae82adc497d694218a3619ac2618d53370aea65c2c3b5e46d93da90d918960db893b6375d4f774d6b158c20248d041

    • SSDEEP

      6144:9guWVbEcsHmn00914cBmnNP/NtSBRCYSKmPr52NBFQ7KLSQ/gZEOHHrpm1XUZLx:PWVbEcsHgndButPWiPl2NBZytLpm1E

    Score
    1/10
    behavioral16

    • Target

      msra.exe

    • Size

      600KB

    • MD5

      2e2534eefa2eee173fc2e3d79c693e9c

    • SHA1

      c3cffbc309f2c3a0bdd2cf58a3501539678b7bc5

    • SHA256

      1d7dfa0e92935d231c651e83c81e9c96d17c35d15da133df97434d5c77f176c8

    • SHA512

      b091d81599405edd1f101a482d3a7d4e5298d785b1810ac0e5cdaa256e55c6c87fdfaf2deeca67a038b16c7b6eb075bc57abb73d02ae2c2200bf1c0dd0192e9a

    • SSDEEP

      12288:xLSXUd1ScDoXiqBJ+5khDrmsadhMEW6eUiiJI:EXUd1ScDoXiqBJ+5khDrFadh5Ziiq

    Score
    1/10
    behavioral17

    • Target

      mtstocom.exe

    • Size

      156KB

    • MD5

      46f315deccc2b9fe64256f61f2f9733a

    • SHA1

      8c222b146997d75d95c67647ac0256f86d61dc39

    • SHA256

      b066374604077916f6aca26484d90f2890abcc8a7ebb755ece22e1d45827bceb

    • SHA512

      f16b1da114c982bd8abd76a91a78df52cf4691d2611691a04696d785690a9955a174f69db7679126024eb10461a2e4cd21a4a415098b946d810ec515c15dd201

    • SSDEEP

      3072:yqyT5mVq3AsDhUBs6mh8KgjfeB2y61MuSaLjG:yFmTsDhUK6m+KgbeBV61MuSaLj

    Score
    1/10
    behavioral18

    • Target

      nbtstat.exe

    • Size

      40KB

    • MD5

      c7596d3fad62996d752e03d2cc03d52a

    • SHA1

      5d293e75ddb51889ed9f2067ab54a054b61a3ba6

    • SHA256

      e2259ea3c5f2dbf3adffec684f81670b89bce3d595cc24b2ea2ec821f09e94cc

    • SHA512

      412e2d710786cbdc0c05078a89770ac1329db6ceb2c4d7fadf56be93d53745bea8b9a95db814371f28f81b78387bc750604e9ce597ed8fc8a0cd6eb3a22a2020

    • SSDEEP

      384:udJ8xDih6RRor0BLbIUD3fCP5RTgOqbypI3MGE+LKDWvrW:OJ8nnorELbIUDvCPPgOqepI3idw

    Score
    1/10
    behavioral19

    • Target

      ndadmin.exe

    • Size

      88KB

    • MD5

      f8936cf4abbf1c607dbe70b072ee6631

    • SHA1

      8249e150b32e36ab5cd9e4ff709a8a6336388f95

    • SHA256

      39db390a50cda4892560c503e7cd6b9492fed5e49f201be846b968c02665909a

    • SHA512

      5364513f71051df8c3383d9e944ddc1927d4421b11fd33e26dbc1dfeabf7479d1e8735924c5afc12517e6e41c2efb4b454e6dd949371b5828eccac8e81c414b6

    • SSDEEP

      768:vGbGc1zaxXBCXxTrjQAhtqIrn8+1hrpFIUUUUUUUUUUUUqRcxM:uboXIXFrjfFrGUUUUUUUUUUUU3+

    Score
    1/10
    behavioral20

    • Target

      net.exe

    • Size

      80KB

    • MD5

      bb1ae49b6b7c53499e94613761a6ac56

    • SHA1

      76866dde54ee3fa5bc8efefb9d44e6bf859973aa

    • SHA256

      afbe51517092256504f797f6a5abc02515a09d603e8c046ae31d7d7855568e91

    • SHA512

      03e832e859915c3f17eec4205863383f23532892f69519fe604c15fcc855804608adabd0dbbda158307d9c009f88482633b24cb35c4ea85b7022fb638f6fc018

    • SSDEEP

      1536:q++ViCmfVsRS+dFyRuyRaWqxkfDdR1dDNATmZF+:P+ViKnKfDD7DNATma

    Score
    1/10
    behavioral21

    • Target

      net1.exe

    • Size

      200KB

    • MD5

      7cbb1df40115c7d3cf0fe6ccff82708e

    • SHA1

      72294a3e95db575e23a1029dc4b6f63df25ad0dc

    • SHA256

      50e8ab76e511a917fd8ccf149ddac1447fd817ff703aa9fdcc51dc77ac0237be

    • SHA512

      7fec7794aa6996b729701f04477d67ec5ce6ff7f968598b091d2b790bd44c8001d1edee633b98c9e6974c1165d04a75effaf19ba7dc46a1fe2c974e7589715b4

    • SSDEEP

      6144:QJ0wqiwfN83c2j1QRViZn8pGOq+7ELW6K3fHq8s:QKwqiwfN83c2jWDiZn8pGOqqoKPHq

    Score
    1/10
    behavioral22

    • Target

      netbtugc.exe

    • Size

      44KB

    • MD5

      0f2924a72033a3a303685cee3b9ab8f4

    • SHA1

      41c14211bef85e0b5d1e8a0f475715207a0018d2

    • SHA256

      421b43689c02a7668e120358a034cdbe3bb14f6671f911bc998cec6483b0a41e

    • SHA512

      2581e48f6b762d1041fce702dea1f7ab64316a326eee4abcd370e1de938799b20d9364820f12474834d0681ee452e268c1ca64cca15a19f975a916488483af65

    • SSDEEP

      384:KRF4MD3wCzuJ6IPRyWvgzZnIPwjWosk4HamQNnTAvub5mAvW/OFW:KOCzO6cgN4xHTQhAvGXx

    Score
    4/10
    behavioral23

    • Target

      netcfg.exe

    • Size

      64KB

    • MD5

      65c5156e563c68dac287518c9fdd5acc

    • SHA1

      72506d6c735cc8c11ab50fbe7b20743044b2345b

    • SHA256

      0c93f74aa22ba299d89b00ad2b7e0f9c795e0969278909071b084b71b26f4a99

    • SHA512

      18fa9b59bf77d42b0c79da83e18987e30c4465fc4db5792ae7e7ec4a472598594021e1df995f87dab6872ec13e236b12e52ac20500101ae5d48d68f892f854e6

    • SSDEEP

      1536:vZHiP2YW179pZRXrb8l0zokuPtai+9GM7Aw2SN:vZpYA79p3rol0zzYb+kMkw2G

    Score
    1/10
    behavioral24

    • Target

      netiougc.exe

    • Size

      52KB

    • MD5

      a8299961e1c35d45363705219e58aef6

    • SHA1

      809f0f42a44184aecb66e25dc99487af6d9e7543

    • SHA256

      8cadcf5b0df1017fed04e4c2b75e54f737a2a9cf0bedd62378b712ce69eec001

    • SHA512

      dfd7d8a5c5ccb689a50f12689e980aeb7b672c456bbdcacf7b4a4dcaa8001592a0db29a75f3dbc5d27f2a61e83287dd35efd2d384814722a3b8b6991fdfdb902

    • SSDEEP

      768:bOUB5gMFFVXSNdmOyrNkcRpP/i9rI6xGjj/3Hxtr:FBB1S7mWc41gv/fr

    Score
    4/10
    behavioral25

    • Target

      netsh.exe

    • Size

      116KB

    • MD5

      52b4651083081201e243e97ed965b60a

    • SHA1

      92f2b4e5e5ca66486f4062ab27b8af23d6ad564a

    • SHA256

      3e91414a1a005937925e449627d4634e73b1da9dc12d1008b1baa54c77637c44

    • SHA512

      d8ebadcfdcd0ddedd27d50347473a274b22601ba17d683c6b20274ffdd0765fb15e4f9799bff4928e1e23f5f9af274e8a925df4975902ec5dd2ecfea694f6f43

    • SSDEEP

      1536:mpcHB7pj43bXYGgPRdIM5uTKWN7tX26bKmGaZ9:mpUzjyXYGofIiuT1N7tX2KB

    Score
    3/10
    persistenceprivilege_escalation
    behavioral26

    • Target

      newdev.exe

    • Size

      88KB

    • MD5

      83e0a872769219e77dc27dc49e646736

    • SHA1

      e74d2c22423de2a2dcea515b057e1142914ea1ab

    • SHA256

      6800f7a4315de6e021ed7ee6628ce0e7a298efb0287505aff91bdd9bee39b607

    • SHA512

      2df1f09a8f37882b9cefcc156d23a1b7d9f76aab034b81d947da32cd9b4ed42b3290fa5fe885b96d92038c2108f01084fee84221716cbcdeae67343b790ee85f

    • SSDEEP

      768:Irdm90fsOyVWrMa22CJQAhtqIrn8+1hrpFIUUUUUUUUUUUUqRcxM:QdIfOyWr322CJfFrGUUUUUUUUUUUU3+

    Score
    1/10
    behavioral27

    • Target

      nltest.exe

    • Size

      564KB

    • MD5

      ffae150861886569986c798527ad8bf7

    • SHA1

      869618c07630b018ee212a8aff15f359d6d5ba85

    • SHA256

      ed6cfab49ae39d367f92216eb65cd35cfc9c894142da8c5412ac673b63fd39f9

    • SHA512

      f29db914c2aaaa6551b3fabbe95fc3b7edb43cc64819dcccf445fb61dfd31df6f1d088812c665543f84cb16f3470c853d8b8b961cc7f67d3a51a855dc7a94997

    • SSDEEP

      6144:6cyRrOQjgz1xj4OvUodwgUj1umVa9uhS:9Ir3+1xj44AC0h

    Score
    1/10
    behavioral28

    • Target

      nmbind.exe

    • Size

      125KB

    • MD5

      6811dbdceaa9ce1383882108f6e4c1d0

    • SHA1

      c114eec0930ed699471ff725859d195342f484de

    • SHA256

      67d90370b310c32ffe6baa529f766ce5a6e5bc7cb8701e80c384ea991200cbe7

    • SHA512

      9bc5c41d4a0795f035962659652ecd11b4b8803243fb11fb05633e9923733a1f6ad8ad7a50f171db767101fcc9d65012bde5c1eb2a2e503b52931b5be43c1413

    • SSDEEP

      1536:0lpRJTAPEhXfo7kxiI2HvynZPaK75/htZm+P9A4W1UFALPbnRz3:0pHNXAI2H+9375dm0TYUF81z

    Score
    1/10
    behavioral29

    • Target

      nmscrub.exe

    • Size

      397KB

    • MD5

      6fd63029dac48e5fda759fcc2e17cc4c

    • SHA1

      f7e3433d4483154f5e5b9c9e0de9b918b54ecbdc

    • SHA256

      9517e2a9f58706d03c92793d21735a10ff08d27b5008ce027a74856c8bc729cc

    • SHA512

      90dc0569dc9f59eacaaecf3263f4293a25ca753051c7c63a12b517a1f162053b2b2e09e1f2ba1e5b2b1b69c5afa9ad66df40df841a6418c4f397be61e4e01d06

    • SSDEEP

      3072:Nplcgf2nohF6TSEqYn3KIS6fvAYVnrUH5FHcAkNKtxmJinleNK2rH3fk2BO5Q4dI:ND2nQ9YnaCvAY58xmCa7cpQ4+ZWFE

    Score
    1/10
    behavioral30

    • Target

      notepad.exe

    • Size

      352KB

    • MD5

      ff3e29fdfafa0e9030e2fcd71489d41d

    • SHA1

      d11d30ad4f2780ffee3626901bc50ccf5b20fc2d

    • SHA256

      ca29e8d8eca84f6f1b39e0bad771752cebf86d7754c20b69c77ab641a9ac2767

    • SHA512

      288d372144727125fcf5878534da5509c5a192e49c9da12cc6491d29ef3eb833394b9115d2da33a1b98fd776714df0296f21c7e64c6b05c2de3db6d060418815

    • SSDEEP

      6144:fn4F8DgewfvNtgmk2RJZtqJpiNecjqvLeYFu5CdUqiilipQ5gfzDVlVXgJ:fn4F8Dgewfltgmk2RP4Ls5CdUcAQ5GpX

    Score
    1/10
    behavioral31

    • Target

      nslookup.exe

    • Size

      100KB

    • MD5

      e1ad42845d19fc9cbfa7d6167d2ec709

    • SHA1

      3bd6d9a9c94e16a3b7278990531b5d7d33d111d7

    • SHA256

      ed7c553ef847d0e6b42969d56d84ecda77d4770131f70661fd430c34d2bccb94

    • SHA512

      9a71e5714497b0e83a659721e753c85cad178ac5677d9ecabe7e1c301b070619d16a43ae19d1ce4768c80a42ebd0ffba340e920b9f2f6a0ea25e11c631fa4461

    • SSDEEP

      1536:Qm+9V+qmsvwult/6pXm9lCW1gIy1Z4XIrb+XfjSxu:QVV+6P/60SfDoIyou

    Score
    1/10
    behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
4/10

behavioral24

Score
1/10

behavioral25

Score
4/10

behavioral26

persistenceprivilege_escalation
Score
3/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10