General

  • Target

    konflickt.exe

  • Size

    114KB

  • Sample

    240807-r7fxrszdrm

  • MD5

    9ebe99b1ad006ec36e201a4ce8215d12

  • SHA1

    966ae9009aef43ab0ffbc124ff66ce8c5e130697

  • SHA256

    83d4b0869a1cd74c64c112556e1191e63b298876baf6ed51a358b72aced304f9

  • SHA512

    d8f6ec298cd81cd7959db5b6256fadba7a5e8a7091ea6f19be6c5a0bcb7ab744ada5119acf4755bd9fc493c44ee2973df88c1791b85d5ac0405762afee15f799

  • SSDEEP

    3072:ZgZApdYrD28fbJB2yLtyT4bjjxK3QdjrxivW+DXnH4vymb11g:Z/pe1J04bXtrxivW+D34vB

Malware Config

Targets

    • Target

      konflickt.exe

    • Size

      114KB

    • MD5

      9ebe99b1ad006ec36e201a4ce8215d12

    • SHA1

      966ae9009aef43ab0ffbc124ff66ce8c5e130697

    • SHA256

      83d4b0869a1cd74c64c112556e1191e63b298876baf6ed51a358b72aced304f9

    • SHA512

      d8f6ec298cd81cd7959db5b6256fadba7a5e8a7091ea6f19be6c5a0bcb7ab744ada5119acf4755bd9fc493c44ee2973df88c1791b85d5ac0405762afee15f799

    • SSDEEP

      3072:ZgZApdYrD28fbJB2yLtyT4bjjxK3QdjrxivW+DXnH4vymb11g:Z/pe1J04bXtrxivW+D34vB

    • VanillaRat

      VanillaRat is an advanced remote administration tool coded in C#.

    • Vanilla Rat payload

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks