4dfeff5c2ab6b7e4c0a2e059a96f6ed57d4e7d68d0b3e0b14cae92b27de8ad6c | Triage

Sharing

General

Target

4dfeff5c2ab6b7e4c0a2e059a96f6ed57d4e7d68d0b3e0b14cae92b27de8ad6c
Size

372KB
Sample

240809-b3jj4ayakb
MD5

28a835a97fd846cc3e9ff32e554b3a5e
SHA1

76a398d6b0427f6de301ba5b5075db9358b65efb
SHA256

4dfeff5c2ab6b7e4c0a2e059a96f6ed57d4e7d68d0b3e0b14cae92b27de8ad6c
SHA512

561d52032dfb7805f8addb4f1eed976a07c5fd106d0099ee32cefc16a431052cd577bdb6af139e1afcc076a884b33e2a5d83b48be3215c561b6f0a48c82e5730
SSDEEP

3072:JGPwCok2G18ugkRuWeN8Amwir2j/fUSchx1HpyYZr1gU5BchO:JGpoYhD2bfkxrP5f

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4dfeff5c2ab6b7e4c0a2e059a96f6ed57d4e7d68d0b3e0b14cae92b27de8ad6c
- Size
  
  372KB
- MD5
  
  28a835a97fd846cc3e9ff32e554b3a5e
- SHA1
  
  76a398d6b0427f6de301ba5b5075db9358b65efb
- SHA256
  
  4dfeff5c2ab6b7e4c0a2e059a96f6ed57d4e7d68d0b3e0b14cae92b27de8ad6c
- SHA512
  
  561d52032dfb7805f8addb4f1eed976a07c5fd106d0099ee32cefc16a431052cd577bdb6af139e1afcc076a884b33e2a5d83b48be3215c561b6f0a48c82e5730
- SSDEEP
  
  3072:JGPwCok2G18ugkRuWeN8Amwir2j/fUSchx1HpyYZr1gU5BchO:JGpoYhD2bfkxrP5f
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  4add245d4ba34b04f213409bfe504c07
- SHA1
  
  ef756d6581d70e87d58cc4982e3f4d18e0ea5b09
- SHA256
  
  9111099efe9d5c9b391dc132b2faf0a3851a760d4106d5368e30ac744eb42706
- SHA512
  
  1bd260cabe5ea3cefbbc675162f30092ab157893510f45a1b571489e03ebb2903c55f64f89812754d3fe03c8f10012b8078d1261a7e73ac1f87c82f714bce03d
- SSDEEP
  
  192:VjHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZv0QPi:B/Qlt7wiij/lMRv/9V4bvr
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  1d8f01a83ddd259bc339902c1d33c8f1
- SHA1
  
  9f7806af462c94c39e2ec6cc9c7ad05c44eba04e
- SHA256
  
  4b7d17da290f41ebe244827cc295ce7e580da2f7e9f7cc3efc1abc6898e3c9ed
- SHA512
  
  28bf647374b4b500a0f3dbced70c2b256f93940e2b39160512e6e486ac31d1d90945acecef578f61b0a501f27c7106b6ffc3deab2ec3bfb3d9af24c9449a1567
- SSDEEP
  
  96:o4Ev02zUu56FcS817eTaXx85qHFcUcxSgB5PKtAtoniJninnt3DVEB3YsNqkzfFc:o4EvCu5e81785qHFcU0PuAw0uyGIFc
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  Dentrix Smart Image Surround Medical Connector Uninstaller.exe
- Size
  
  318KB
- MD5
  
  138d61c4330d3d5d03641b91ea02819e
- SHA1
  
  52617cfc7b85bee812db663c8abb2b914db57477
- SHA256
  
  1c524f4a823ba4f22fb3da71eeb5738a209097ff5c42206a55cccb39a9190556
- SHA512
  
  451662ed5375030c01e6ddf682a31afa86a61b51d6d5a57433b0d15c514b84b2d129f67a2b163cef9bcfcbe7639f17ab633e8ed5f16c6243f806b3b81ffc7f71
- SSDEEP
  
  1536:qqGR1+9+poFeaMZMG18ugt9UzQjOoOGkTOWeD58AmwirJaIKQ4chU:JGPwCok2G18ugkRuWeN8Amwir2HchU
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  12KB
- MD5
  
  4add245d4ba34b04f213409bfe504c07
- SHA1
  
  ef756d6581d70e87d58cc4982e3f4d18e0ea5b09
- SHA256
  
  9111099efe9d5c9b391dc132b2faf0a3851a760d4106d5368e30ac744eb42706
- SHA512
  
  1bd260cabe5ea3cefbbc675162f30092ab157893510f45a1b571489e03ebb2903c55f64f89812754d3fe03c8f10012b8078d1261a7e73ac1f87c82f714bce03d
- SSDEEP
  
  192:VjHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZv0QPi:B/Qlt7wiij/lMRv/9V4bvr
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  1d8f01a83ddd259bc339902c1d33c8f1
- SHA1
  
  9f7806af462c94c39e2ec6cc9c7ad05c44eba04e
- SHA256
  
  4b7d17da290f41ebe244827cc295ce7e580da2f7e9f7cc3efc1abc6898e3c9ed
- SHA512
  
  28bf647374b4b500a0f3dbced70c2b256f93940e2b39160512e6e486ac31d1d90945acecef578f61b0a501f27c7106b6ffc3deab2ec3bfb3d9af24c9449a1567
- SSDEEP
  
  96:o4Ev02zUu56FcS817eTaXx85qHFcUcxSgB5PKtAtoniJninnt3DVEB3YsNqkzfFc:o4EvCu5e81785qHFcU0PuAw0uyGIFc
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  DentrixPortrayApi.dll
- Size
  
  6KB
- MD5
  
  8694eaed323a0daf65e5a63e85201836
- SHA1
  
  2bd44d66bd40fe513e0a40a1b73df9dfa9f4fd67
- SHA256
  
  5dd2d0887250a0973be1cc3d3cb1c489581a99a255ff3f10bedc8df1f20b758c
- SHA512
  
  d97152599541d256aa42e9ed467917cae315d738d1d6d09a38be8587232deb441ea75aec15568a77dc22b9570bf7379b5638dd6dea8cfd663cfacf91c6080325
- SSDEEP
  
  48:6Y6bkt6wtnWME56uU98Ly9RIBo7H7JDsdMq0xUQtmD6CJ5eSqdAFA9yZSLg50rE2:dfuU982H7W0xUO9IJ7ULy0rSOS2Fr
Score

1^/10
behavioral13 behavioral14
- Target
  
  Smart Image Surround Medical Connector.dll
- Size
  
  37KB
- MD5
  
  bbd606c16bcdb0713591160fc0298f2b
- SHA1
  
  dac214784f220b4d253fde08736e147e39f61714
- SHA256
  
  7d9824d97eb0bcc76d4fc5ed0519980752defca0bf8905a3304bc2f18a2b1f7c
- SHA512
  
  5e8f4d6be8f665062db54a02f2f86d4958aa2f7d45bbb86c2d0d42563a91f4dc51c5076209a2717bd15d9a7da9d254a3d1ae0d46d8bfcc1969bb944079516c31
- SSDEEP
  
  768:5Ao3M/isQQrxbaR/QY3jFzVRHR63iPmbL/A:5AgM/sQrJaJQQRHRU73A
Score

3^/10

discovery
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16