1b80d636fb9204b3974d0d9ed88f1e342a1ad198b0f1caf4e37e25198b126d2f | Triage

Sharing

General

Target

1e737a49148aed5080271296c44018b0N.exe
Size

239KB
Sample

240909-pknb8azdnd
MD5

1e737a49148aed5080271296c44018b0
SHA1

4b7a35e72e8e9334fac287770f7b8c90cb5b7003
SHA256

1b80d636fb9204b3974d0d9ed88f1e342a1ad198b0f1caf4e37e25198b126d2f
SHA512

cf89a40d62d6dfacd1a85cebe296320e8f0daf15eaa15293e811257433f3f6dcbd1751128beea26a50cfcb13eac13c8157eba6fd37bbecb40e53c3cc7c27399a
SSDEEP

6144:LZ+11mDid7De9NVS22E+bKN2ja89j2By98H/:9uZa9NcEJNp8F2ByiH/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1e737a49148aed5080271296c44018b0N.exe
- Size
  
  239KB
- MD5
  
  1e737a49148aed5080271296c44018b0
- SHA1
  
  4b7a35e72e8e9334fac287770f7b8c90cb5b7003
- SHA256
  
  1b80d636fb9204b3974d0d9ed88f1e342a1ad198b0f1caf4e37e25198b126d2f
- SHA512
  
  cf89a40d62d6dfacd1a85cebe296320e8f0daf15eaa15293e811257433f3f6dcbd1751128beea26a50cfcb13eac13c8157eba6fd37bbecb40e53c3cc7c27399a
- SSDEEP
  
  6144:LZ+11mDid7De9NVS22E+bKN2ja89j2By98H/:9uZa9NcEJNp8F2ByiH/
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/FGet.exe
- Size
  
  52KB
- MD5
  
  aee371b287d879be8e0e861fb380b1f7
- SHA1
  
  265d7bba1a96decafde9d0946d0b8f46f70990b1
- SHA256
  
  798add076e955c92841dd403ababac33e6bd86d85cab93816a16d1b5e5925573
- SHA512
  
  fb6042b5c09768945760da537f2710f05966765a6b7400737ec4ac4b48e241a2e06c6b7e7f20db361265e81beac18500b690534a6c6a4d0b2027093ab9b47814
- SSDEEP
  
  768:+hLzLxQuDxeCOdq+vhpoxk+keOzxqsVYd:+hXlQ1COU8+fKx0
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/FindProcDLL.dll
- Size
  
  3KB
- MD5
  
  8614c450637267afacad1645e23ba24a
- SHA1
  
  e7b7b09b5bbc13e910aa36316d9cc5fc5d4dcdc2
- SHA256
  
  0fa04f06a6de18d316832086891e9c23ae606d7784d5d5676385839b21ca2758
- SHA512
  
  af46cd679097584ff9a1d894a729b6397f4b3af17dff3e6f07bef257bc7e48ffa341d82daf298616cd5df1450fc5ab7435cacb70f27302b6db193f01a9f8391b
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/inetc.dll
- Size
  
  20KB
- MD5
  
  e541458cfe66ef95ffbea40eaaa07289
- SHA1
  
  caec1233f841ee72004231a3027b13cdeb13274c
- SHA256
  
  3bce87b66d9272c82421920c34b0216e12c57a437d1955c36f23c74c1a01d420
- SHA512
  
  0bf6313e4cb7bbdcfba828fb791540b630adc58c43aa4b5ba77790367d0f34f76077cd84cc62e2a2c98c788a88547f32a11e549873d172c5aa2753124847cd0c
- SSDEEP
  
  384:b1JO6XgZkjxm+NpXaWgzxUX//EUhU7ya4LQ0Ac9khYLMkIX0+GBty3Sm0:b+6Xgsm+NpKWgzxUXnEUhUua4Li70
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  $PLUGINSDIR/linker.dll
- Size
  
  7KB
- MD5
  
  8b1a528ab4dbb024442b42d7a0fedead
- SHA1
  
  95d45da81fe6d595147c18dfbd8e63915825c16a
- SHA256
  
  75db16ea26ec8c6e728f4a99b737c8b3a6548b4c6b47fbe20286683df4745574
- SHA512
  
  9ed39f5a657dfcd04f3d9ec5592a826e9120128056ca17495b267355452cffd247d35a051edb810fd7647bbbcbea30844a426ea18c5bfdabedc792a172aa4d97
- SSDEEP
  
  96:lFi2eJMNhAXZqUCN9jna18wz7u2OwJbD+Sgd+SyVOVZ:l7eCAejna1bHewJn+Sm+SA
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/nsDialogs.dll
- Size
  
  9KB
- MD5
  
  c10e04dd4ad4277d5adc951bb331c777
- SHA1
  
  b1e30808198a3ae6d6d1cca62df8893dc2a7ad43
- SHA256
  
  e31ad6c6e82e603378cb6b80e67d0e0dcd9cf384e1199ac5a65cb4935680021a
- SHA512
  
  853a5564bf751d40484ea482444c6958457cb4a17fb973cf870f03f201b8b2643be41bccde00f6b2026dc0c3d113e6481b0dc4c7b0f3ae7966d38c92c6b5862e
- SSDEEP
  
  96:hBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4VndY7ndS27gA:h6n+0SAfRE+/8ZYxMdqn420
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/pwgen.dll
- Size
  
  16KB
- MD5
  
  a555472395178ac8c733d90928e05017
- SHA1
  
  f44b192d66473f01a6540aaec4b6c9ac4c611d35
- SHA256
  
  82ae08fced4a1f9a7df123634da5f4cb12af4593a006bef421a54739a2cbd44e
- SHA512
  
  e6d87b030c45c655d93b2e76d7437ad900df5da2475dd2e6e28b6c872040491e80f540b00b6091d16bc8410bd58a1e82c62ee1b17193ef8500a153d4474bb80a
- SSDEEP
  
  96:Rb32p/4mp563gfdaDf2GEFd69qI214YgU+dXXDtFCOdd7KPcC+pyTY62l2z252NJ:YCQAED61dpEEN5VifUbw2mDG0
Score

3^/10

discovery
behavioral15 behavioral16
- Target
  
  $PLUGINSDIR/unicode.dll
- Size
  
  5KB
- MD5
  
  acbb8be17d02aa83713d58c8d216f15e
- SHA1
  
  51cc62f2db64ecbada90e3d09a1fa9234b4736cf
- SHA256
  
  b342602927f759a2cf86b9f0e89903a76f43ee2f4ec51568ab845f68263bc589
- SHA512
  
  b4df67ce8fbb23a7db00fd667fed478c3e1e8dcc12433654f3ec5258feeb3d3f4f7fce930d314020c499ff956d36d399e0f43749c934c30e25a0707cee5032be
- SSDEEP
  
  96:W5r6fWrjiTPK9j8Kwu1Mx9nbB8JDFKSX:8rhSTy9jvwIMxx6
Score

3^/10

discovery
behavioral17 behavioral18
- Target
  
  $PLUGINSDIR/xml.dll
- Size
  
  118KB
- MD5
  
  42df1fbaa87567adf2b4050805a1a545
- SHA1
  
  b892a6efbb39b7144248e0c0d79e53da474a9373
- SHA256
  
  e900fcb9d598643eb0ee3e4005da925e73e70dbaa010edc4473e99ea0638b845
- SHA512
  
  4537d408e2f54d07b018907c787da6c7340f909a1789416de33d090055eda8918f338d8571bc3b438dd89e5e03e0ded70c86702666f12adb98523a91cbb1de1d
- SSDEEP
  
  1536:U2A8OSGjylgkara+70LICin9zgtg2LxowhtJu6MqSNicNEtIfF42q2KC:OzjLkarn7O+n9z2L6whFtGF42bK
Score

3^/10

discovery
behavioral19 behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20