507a0733a9c68e702528ce712711ad7b2f144444a860b75e9e37fbb5186e2c96 | Triage

Sharing

General

Target

138db95ea5c5bd696c0c08bf4aff30a0.bin
Size

139KB
Sample

240727-bvj6na1cnc
MD5

138db95ea5c5bd696c0c08bf4aff30a0
SHA1

eb5cd200a9b4b8fa6fe9c35f4bd8480a373f9512
SHA256

507a0733a9c68e702528ce712711ad7b2f144444a860b75e9e37fbb5186e2c96
SHA512

58897798a4193a11238e175b42fce7885da185cad874da674f4c5de0153e1302437f514eb4f4805a9cd3dea4691b17f1a1107b92d3aa850cf0c0ed678e35e3c5
SSDEEP

1536:rC2/fYuPfbESFYXRWhpKRycRd57JkIqFHhzm4hWru/BzihhMN45MF5FvHP132xPI:r7YubEwYXRWhpAJUHhzm4hUukS6KmecS

Score

8^/10

discovery evasion execution

Malware Config

Targets

- Target
  
  138db95ea5c5bd696c0c08bf4aff30a0.bin
- Size
  
  139KB
- MD5
  
  138db95ea5c5bd696c0c08bf4aff30a0
- SHA1
  
  eb5cd200a9b4b8fa6fe9c35f4bd8480a373f9512
- SHA256
  
  507a0733a9c68e702528ce712711ad7b2f144444a860b75e9e37fbb5186e2c96
- SHA512
  
  58897798a4193a11238e175b42fce7885da185cad874da674f4c5de0153e1302437f514eb4f4805a9cd3dea4691b17f1a1107b92d3aa850cf0c0ed678e35e3c5
- SSDEEP
  
  1536:rC2/fYuPfbESFYXRWhpKRycRd57JkIqFHhzm4hWru/BzihhMN45MF5FvHP132xPI:r7YubEwYXRWhpAJUHhzm4hUukS6KmecS
Score

8^/10

discovery evasion execution
- Stops running service(s)
  evasion execution
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

discoveryevasionexecution

behavioral2

discoveryevasionexecution