8f80684a8bb4903d94ab74bd54e1cdb89cd70a7072fdf51f23200f44510cce0c | Triage

Sharing

General

Target

process_lasso_14.2.0.32.zip
Size

4.8MB
Sample

240722-s2q18avhnp
MD5

d719a417bb4e4859e3db8261bceece90
SHA1

04365219880064f1919b3b440e3482b3cb9482b6
SHA256

8f80684a8bb4903d94ab74bd54e1cdb89cd70a7072fdf51f23200f44510cce0c
SHA512

567a69cada0fa1de76fa8b64d9a7e77d1f966614ea055b2bfb730e102a9f72f5fcb331dfff69b756030a977c9c39555cfc5cdefdae6df4824d25e65018c5585c
SSDEEP

98304:AiMQbMxlGdLcpJxzJURSVfQ24BDbuk9h15sj:AiMQQlGvSVfT43Wj

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Process Lasso 14.2.0.32.exe
- Size
  
  4.9MB
- MD5
  
  315fe6eb3b3e3e0f0567e0c6b6d3b9ea
- SHA1
  
  65323656903c05c2866556080beee6a3511e8c40
- SHA256
  
  80c9bd5849e8dbbb38568978b995ae785b8bbfc5de218d938568e7281260789d
- SHA512
  
  d11d428de015ffc5744fd5c3b7c3ddb4bcbb0681691ff683f217d8ec9e427301cf76a1754e9f18164a933cd5a2af03eedc13609e7a695b208b04ba9cc5112bc8
- SSDEEP
  
  98304:PnsI+4x8J/GDtYR7VPf4R6fjEwOBRbIK9hnb9mm:EI+4K/Gt6fjjOdb0m
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2
- Target
  
  _Silent Install.cmd
- Size
  
  1KB
- MD5
  
  1586fcb6353ba97337072ffc9a49e046
- SHA1
  
  9e29a16a45b4a0a61e0c481ad20f5c278c3504d4
- SHA256
  
  6601cbe618dd90ef2daf02fb3fd41b492ea8b2afa2b234d3b7f483c432e4d78d
- SHA512
  
  e36ef005c18bb0905d453afa3eb2eabd1c3552e72385fb1ba72992a0db440cedfc3f84ca1237c2479033e2ab1f81d18ec061941d046ff21704da66bd76ed4138
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral3 behavioral4
- Target
  
  _Unpack Portable.cmd
- Size
  
  1KB
- MD5
  
  11bb19b34ae3d7efb2f2896416bdecfd
- SHA1
  
  76749fa742a58c585c7a9e6044d798776fc35d00
- SHA256
  
  7256488f34caa5538294556b0b728e291cbe635f8d3cc6cd8195ad4bef1f782d
- SHA512
  
  8ced83bb80ca73c583890bacee3c2306c347e84c33bf883dd4589139b8d830d01131f6d8e3c6ea7a29b9bea59c40be447d5d2968a3d78bee2fb11d4116996377
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6