004d8ddd60ff8d9a5ccd237333c3a35ea031e2563773548ba9faf19f70d0b21a | Triage

Sharing

General

Target

Trojan.Win32.Fareit.VB.MTB-004d8ddd60ff8d9a5ccd237333c3a35ea031e2563773548ba9faf19f70d0b21aN
Size

468KB
Sample

240919-mpa7catfpc
MD5

0ee8db4f0bf29048451feee2613748f0
SHA1

4a0b8510a4739ee23b571eb532460a3e67c76d2f
SHA256

004d8ddd60ff8d9a5ccd237333c3a35ea031e2563773548ba9faf19f70d0b21a
SHA512

f30248b3f5bd9e5d766d90d46424d6bc662618c7d8978f1bb097f061ef07e1aa73722ab8a8581a3721ee15b8e47e04d0eb257cef464cda1a4b8ef725cca0db4b
SSDEEP

3072:S20sogKEIV5jtbY94AcTJf8SaC5CSppLJEHCxVyxJHrLSTqugwlp:S2/oLjjtS4dTJfNfxaJHvwqug

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Trojan.Win32.Fareit.VB.MTB-004d8ddd60ff8d9a5ccd237333c3a35ea031e2563773548ba9faf19f70d0b21aN
- Size
  
  468KB
- MD5
  
  0ee8db4f0bf29048451feee2613748f0
- SHA1
  
  4a0b8510a4739ee23b571eb532460a3e67c76d2f
- SHA256
  
  004d8ddd60ff8d9a5ccd237333c3a35ea031e2563773548ba9faf19f70d0b21a
- SHA512
  
  f30248b3f5bd9e5d766d90d46424d6bc662618c7d8978f1bb097f061ef07e1aa73722ab8a8581a3721ee15b8e47e04d0eb257cef464cda1a4b8ef725cca0db4b
- SSDEEP
  
  3072:S20sogKEIV5jtbY94AcTJf8SaC5CSppLJEHCxVyxJHrLSTqugwlp:S2/oLjjtS4dTJfNfxaJHvwqug
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2