nullmixer | a4dd21f4965c414ef39e884956903142ad16fa5e5178d816aaf77c59b22069f9 | Triage

Sharing

General

Target

63ac9b6d8058574aa926dd220cc3cd9b.zip
Size

505KB
Sample

240831-b479vaydmb
MD5

6f9158988ee3d229007413c89351c3fd
SHA1

034ee43fc45e18311f7d40e01ba287739d3f3bc1
SHA256

a4dd21f4965c414ef39e884956903142ad16fa5e5178d816aaf77c59b22069f9
SHA512

bcb76135da62e5e5f8fa7007c2ae9bd53425ca9f295e09e6c44be249a4f976365689275ac2be14205bb2d444ca3949ef1f3092b69de32bb247811f7ec9ee917f
SSDEEP

12288:5VPYJgXyUJ903CUz2BxWoKk8mzcT0bn0vLHpEK0/rFN:DPYJ4yUJWCUzIFFcg0v7+K0T

Score

10^/10

nullmixer discovery dropper

Malware Config

Extracted

Family

nullmixer

C2

http://hsiens.xyz/

Targets

- Target
  
  ed4e6766816bcadf5374cea1606d5b12ad6777c584c893da30dff67cb6ea816d
- Size
  
  2.1MB
- MD5
  
  63ac9b6d8058574aa926dd220cc3cd9b
- SHA1
  
  c1a67124c5ed55b0be733c9af5cd6cfe5c779948
- SHA256
  
  ed4e6766816bcadf5374cea1606d5b12ad6777c584c893da30dff67cb6ea816d
- SHA512
  
  54c6d5db551a45c7e53a03f5ead74811e75edd238d5853b13deab53773b75b9746e8fab7f472e89c12924d6bd9da194acab42f3cee15bb1fd92b840ab8ae430d
- SSDEEP
  
  24576:9mkuGdYnYrp5vsJsOcfi6hdl//N1Oa+6Zhyl3juQ55313N:9mc3HNA7Jl3F
Score

10^/10

nullmixer dropper discovery
- NullMixer
  NullMixer is a malware dropper leading to an infection chain of a wide variety of malware families.
  dropper nullmixer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

nullmixerdropper

behavioral2