9dcfda29748e29e806119cb17847bb3617c188b402ed743bd16e770401f9e127 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

h2m-mod.exe
Size

7.2MB
Sample

240819-25am3s1clb
MD5

ca63be80bc2c1e177f106015554210e5
SHA1

d9a25cc5074565cd88fab3531e570155c22a8036
SHA256

9dcfda29748e29e806119cb17847bb3617c188b402ed743bd16e770401f9e127
SHA512

fa0dab444f5465d1af40e84f538ffd3a53cdc9954c0c4ec5f356959a9367c4a2e94e9659a6c69b600fbcf4dee916058e46defc34acb635d167a9e2689a9a4f9d
SSDEEP

98304:hjtYW8rlXVeFGxGD3u4k9sNzJm9+bBX3AtlGGoJXiir7BFN1BNN1BPqQ+:rYW8ZleFGwa4k9+zJm0GoJ3qp

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  h2m-mod.exe
- Size
  
  7.2MB
- MD5
  
  ca63be80bc2c1e177f106015554210e5
- SHA1
  
  d9a25cc5074565cd88fab3531e570155c22a8036
- SHA256
  
  9dcfda29748e29e806119cb17847bb3617c188b402ed743bd16e770401f9e127
- SHA512
  
  fa0dab444f5465d1af40e84f538ffd3a53cdc9954c0c4ec5f356959a9367c4a2e94e9659a6c69b600fbcf4dee916058e46defc34acb635d167a9e2689a9a4f9d
- SSDEEP
  
  98304:hjtYW8rlXVeFGxGD3u4k9sNzJm9+bBX3AtlGGoJXiir7BFN1BNN1BPqQ+:rYW8ZleFGwa4k9+zJm0GoJ3qp
Score

8^/10

persistence
- Event Triggered Execution: Image File Execution Options Injection
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Image File Execution Options Injection

Privilege Escalation

Event Triggered Execution

Image File Execution Options Injection

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2