ff63748d7e23e908dc77ef2ee99de79ea60d2d1e31df71f01bfda0f4d802ca65 | Triage

Resubmissions

21/09/2024, 23:08

240921-24va4azajf 7

21/09/2024, 23:08

240921-24mw1syhrh 3

21/09/2024, 23:05

240921-22ykqsyhjh 3

Sharing

General

Target

dhm6hb.zip
Size

1.4MB
Sample

240921-24va4azajf
MD5

c9dc50ae9c21b0b9c197cd8ed3933ce9
SHA1

e31a23ad267bb07f7e350152f7c238a0eae8f378
SHA256

ff63748d7e23e908dc77ef2ee99de79ea60d2d1e31df71f01bfda0f4d802ca65
SHA512

e184dd258cf4982eefbc48a6f0922ee4de1a844e00913cf7a0cfe17a29840fd3c038c0ec5432c9e223dc617b4baa6a9cefcaed48aabbf4cc77b5069255e212b9
SSDEEP

24576:ZJWZ7iMmQECwzEDSdiaKECn+6g+b4EDfpvC/ePXO36m7KJf4G6x:GiLpCwwDrEC+6g+bTNCSoel4Jx

Score

7^/10

defense_evasion

Malware Config

Targets

- Target
  
  dhm6hb.zip
- Size
  
  1.4MB
- MD5
  
  c9dc50ae9c21b0b9c197cd8ed3933ce9
- SHA1
  
  e31a23ad267bb07f7e350152f7c238a0eae8f378
- SHA256
  
  ff63748d7e23e908dc77ef2ee99de79ea60d2d1e31df71f01bfda0f4d802ca65
- SHA512
  
  e184dd258cf4982eefbc48a6f0922ee4de1a844e00913cf7a0cfe17a29840fd3c038c0ec5432c9e223dc617b4baa6a9cefcaed48aabbf4cc77b5069255e212b9
- SSDEEP
  
  24576:ZJWZ7iMmQECwzEDSdiaKECn+6g+b4EDfpvC/ePXO36m7KJf4G6x:GiLpCwwDrEC+6g+bTNCSoel4Jx
Score

7^/10

defense_evasion
- Executes dropped EXE
- System Binary Proxy Execution: Verclsid
  Adversaries may abuse Verclsid to proxy execution of malicious code.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

System Binary Proxy Execution

Verclsid

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasion

behavioral2