17c8ef5428940de7399b3165fb2f7bf2f247e7082ce14a2c611931ea29f11c40 | Triage

Resubmissions

25/09/2024, 19:45

240925-ygpwbaxdmg 8

12/09/2024, 10:27

240912-mg4hxssblh 3

Sharing

Copy URL Twitter E-mail

General

Target

file.dll
Size

416KB
Sample

240925-ygpwbaxdmg
MD5

e73d75e539b7e9acf48683fc6b2cb4ab
SHA1

64006f712a8358817cc546922a1c402eb50a88dc
SHA256

17c8ef5428940de7399b3165fb2f7bf2f247e7082ce14a2c611931ea29f11c40
SHA512

0971977cab1348a62ea646cd12544f5285670fbe2cf5039df3a5dd8b002d770f2a143f2656a6c5b9138d6da3282a2321cfc7ef5e4a2e32459b89f9bf96f6b956
SSDEEP

12288:DqXLg/OBthPP7dUXOahcWUQcs2+2F6FH2PiuAdO:G7g/OvtP7dUX/hc7kdPH28O

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  file.dll
- Size
  
  416KB
- MD5
  
  e73d75e539b7e9acf48683fc6b2cb4ab
- SHA1
  
  64006f712a8358817cc546922a1c402eb50a88dc
- SHA256
  
  17c8ef5428940de7399b3165fb2f7bf2f247e7082ce14a2c611931ea29f11c40
- SHA512
  
  0971977cab1348a62ea646cd12544f5285670fbe2cf5039df3a5dd8b002d770f2a143f2656a6c5b9138d6da3282a2321cfc7ef5e4a2e32459b89f9bf96f6b956
- SSDEEP
  
  12288:DqXLg/OBthPP7dUXOahcWUQcs2+2F6FH2PiuAdO:G7g/OvtP7dUX/hc7kdPH28O
Score

8^/10

discovery
- Blocklisted process makes network request
- Downloads MZ/PE file
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1