b194243d53aac1a81e0b15656341f1272144788f7cd6afaf93e385c00f8bcc2f | Triage

Resubmissions

18/09/2024, 19:24

240918-x4eheszark 6

15/09/2024, 01:57

240915-cc9t2azdmk 5

15/09/2024, 01:56

240915-cctstazdkp 5

15/09/2024, 01:55

240915-cb864szdlf 5

15/09/2024, 01:51

240915-b9xejazcjg 5

Sharing

General

Target

hellomod.dll.zip
Size

6.1MB
Sample

240915-cctstazdkp
MD5

d85f3634cdb2378bd3dcf55d9273d5ba
SHA1

701d22b09434dcef0252878f2f8db301d3f8da0f
SHA256

b194243d53aac1a81e0b15656341f1272144788f7cd6afaf93e385c00f8bcc2f
SHA512

29c02bd790a33434e71f93540c026b765286c4955f5d2e2c6207e568634017c78794341c68acd2c451d013c558089e4d02b13f0d84fe0b2945a0c8c274775e81
SSDEEP

196608:JX/4Bi4ffqFEX5v/VJTZ3MVk2f5Hy/ctjrlLeD2Ea:JX/4fpXLkffU/sBm2Ea

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  hellomod.dll
- Size
  
  4.3MB
- MD5
  
  ed20b5111a2563fe44cb883bcead36ac
- SHA1
  
  d7e78144f5bce1e25da0b84eb5f7a863d0d78af3
- SHA256
  
  17a0b2ef0e65c78c954c1629a5492248bb079ce50721d2a87f442d6f67d4b358
- SHA512
  
  389a6ef3982457da87733c6b694e0f5d97cdc49ae02e2ce3f1f34f237640b18d0e20e0240222e4e59414393c6dd35561c67832e2846c441fed948bdf0475d7c1
- SSDEEP
  
  24576:OhfGEPVcpBJmW7l5rgvAnAF5wU2BSK0egZ9tzUmE6n2KthU/jsTOPTOPTmn0oH5C:OHypBJmW7Tdn65Z2SK0egZ9CKk10kc
Score

5^/10

discovery
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1