a03a2c54363d0a6a4d0cc8adad21bfbd59db178af4635de80ca7381de3817ed1 | Triage

Sharing

General

Target

a03a2c54363d0a6a4d0cc8adad21bfbd59db178af4635de80ca7381de3817ed1
Size

1.9MB
Sample

240908-lrp8ls1epb
MD5

bb9341b87530d7a953d2db2ea4ebe03f
SHA1

55385175af6b8bf160cf018c6bc4da31475952b5
SHA256

a03a2c54363d0a6a4d0cc8adad21bfbd59db178af4635de80ca7381de3817ed1
SHA512

bc9c4e4ed84168dccb9a235b74e1cc0b92f2d272f380c57c3f7b34492d46230130f1166823c16608e6ff962cfd65b7fdec02cfa57a913d229dae9d46a73c03a9
SSDEEP

49152:dYL17IDf+BtPQl0PS3JD+nm7ytzXtqm+mfC56Myk:CL6Etol0a3t+eytzAm/az

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  a03a2c54363d0a6a4d0cc8adad21bfbd59db178af4635de80ca7381de3817ed1
- Size
  
  1.9MB
- MD5
  
  bb9341b87530d7a953d2db2ea4ebe03f
- SHA1
  
  55385175af6b8bf160cf018c6bc4da31475952b5
- SHA256
  
  a03a2c54363d0a6a4d0cc8adad21bfbd59db178af4635de80ca7381de3817ed1
- SHA512
  
  bc9c4e4ed84168dccb9a235b74e1cc0b92f2d272f380c57c3f7b34492d46230130f1166823c16608e6ff962cfd65b7fdec02cfa57a913d229dae9d46a73c03a9
- SSDEEP
  
  49152:dYL17IDf+BtPQl0PS3JD+nm7ytzXtqm+mfC56Myk:CL6Etol0a3t+eytzAm/az
Score

5^/10

discovery
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/NsisInstallUI.dll
- Size
  
  3.7MB
- MD5
  
  8a1cb070eb302cd1f6b9533cb660f2ec
- SHA1
  
  6625f09b8b197463a73945d4334c0764ab704d18
- SHA256
  
  eb70eae413743826bc482f24c01107fe744ea6d8bbd25e59867f5c9694f81f87
- SHA512
  
  43177a131ffdbf6583085929bc937748fb74f1a151271530ef5d242024f1dd7f3e5c0d00f608311ef7f131aad5c02839cce513a8537157bbad9422936177e0bb
- SSDEEP
  
  49152:sI1FYawpvNtJBJJsxaLCHGoFT0LCHGoFTURURCqXllrIn:PbYaA3JBJJsxa6GyT06GyTUR8te
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  29KB
- MD5
  
  1c16cc0484d1e421fbc91ffd55d43bb7
- SHA1
  
  46d2e08a81ccc50b19ee63617222b8b7a1b3f17d
- SHA256
  
  87fcd86c08193dc5f19eebad6ee18dbba7a450f42749ae4338b0c3d0d04a6018
- SHA512
  
  21d7b570f16afe70ab93413260ae3534b3be45e2d43e6c62bd8368414f20e34404c30419863ec592c91ec1f8f9529c6dfe8788ff21867e5538956ec406bbe243
- SSDEEP
  
  384:n28+Qlt70Fj/lQRY/9VjjlLD/HdNyH1Mn8E9VFDPxZoH9sjDGgmRPQGmGovy8Zpv:2SqFjm6tLD/HWM8EJPxZ48DGgByiRP
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/nsExec.dll
- Size
  
  24KB
- MD5
  
  1d79b5919faf2e6c3f0359a13be1cc03
- SHA1
  
  07da0d3b1c3a5a6d34fcffb1ec9c64cc885a6565
- SHA256
  
  1ddc35030176bf65c97fb9870c6269d040c75e27dd550b451e1bd46ca3dd695f
- SHA512
  
  4c393d0e27180b4400f0bdcfaf1e59b9104272b207d8f9ccf689cf53929ac06cb64395168d7d144b8eedf341ea726e15289a1ba278acc25dd01243746543ec31
- SSDEEP
  
  384:yVKJSbBuAVaGdHnUNaw/HdNyH1Mn8E9VFDPxkq2xxDGgmRPcPGmGovy8ZpHqkD:yVKAQlGRUz/HWM8EJPxYxxDGgFdyiR9
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/nsProcessW.dll
- Size
  
  21KB
- MD5
  
  df8dc84e656268da5a75e27a09aa5256
- SHA1
  
  ce52a4a22a04c82f3dd3742685cfbcd954705635
- SHA256
  
  87cc082dbe9c972e297eb64bbb44de8a33f372f35a596415b5835ee97e994fbe
- SHA512
  
  fe5ba36451dbb2327253fbb8cba03266946502c30d82f743d212412821639d306f4725e4e84c264f0b55e9d6ce29d2031c833976b7adb69a174d6735ed0d1c84
- SSDEEP
  
  384:fZv/HdNyH1Mn8E9VFDPx0D7MB+7DGgmRPhTGmGovy8ZpHkhni:fp/HWM8EJPxxE7DGgUZyiR9
Score

3^/10

discovery
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10