49f2b27df834178cd9ba2d01413a82e2e1b8142bfd278bfa07bb0a74e1479520 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8449b64f13d5a8ce1f7f675f16987e90N.exe
Size

468KB
Sample

240817-yrwrlstfnc
MD5

8449b64f13d5a8ce1f7f675f16987e90
SHA1

7491992f5a159f828d6fcf2c97075f41d7fb481a
SHA256

49f2b27df834178cd9ba2d01413a82e2e1b8142bfd278bfa07bb0a74e1479520
SHA512

6ce5e4981e1b8d40dce718eb534fd139dd0f3de35745812640ba6de08d5ed9d88421b630651cfcaa98edf6c322cc3058652eeae871be96d6ffee47972cd6d375
SSDEEP

3072:gnvpovBsU35/tbYAPgc5Of8/E5RJN2XPtmHoxSWOYp+wGf9/4QlT:gnholJ/tLPV5OfbUpOYpDM9/4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8449b64f13d5a8ce1f7f675f16987e90N.exe
- Size
  
  468KB
- MD5
  
  8449b64f13d5a8ce1f7f675f16987e90
- SHA1
  
  7491992f5a159f828d6fcf2c97075f41d7fb481a
- SHA256
  
  49f2b27df834178cd9ba2d01413a82e2e1b8142bfd278bfa07bb0a74e1479520
- SHA512
  
  6ce5e4981e1b8d40dce718eb534fd139dd0f3de35745812640ba6de08d5ed9d88421b630651cfcaa98edf6c322cc3058652eeae871be96d6ffee47972cd6d375
- SSDEEP
  
  3072:gnvpovBsU35/tbYAPgc5Of8/E5RJN2XPtmHoxSWOYp+wGf9/4QlT:gnholJ/tLPV5OfbUpOYpDM9/4
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2