vidar | 639d1d555e9ce1c74642ffad317f4f99e714d5cdcf007533f65cab8f6f8c0a3a | Triage

Sharing

General

Target

2024-10-29_878bb01dcb17cbc542e36e3267cbbeb1_avoslocker_cobalt-strike_hijackloader_mafia
Size

558KB
Sample

241029-hb6nwavlcq
MD5

878bb01dcb17cbc542e36e3267cbbeb1
SHA1

750c04ae58d909c5f474ca68c34da23e5b645168
SHA256

639d1d555e9ce1c74642ffad317f4f99e714d5cdcf007533f65cab8f6f8c0a3a
SHA512

02a65cbf8ccc8fc2197dc465167b155286f06f209a7d7cafe4912c73709a176b9b1eff0238fb02796a89b3a8f23e9f7b2623e88b38e755f491913573a088f719
SSDEEP

12288:rhyTurb4C9y7vJSm1t3aJXMOlabM2jObU2SMvsqFn9rBz3mLEPFzXWxVIc6n:rYTskC9y7BSm1t3aJXMOlabM2CAmv/xL

Score

10^/10

vidar discovery

Malware Config

Targets

- Target
  
  2024-10-29_878bb01dcb17cbc542e36e3267cbbeb1_avoslocker_cobalt-strike_hijackloader_mafia
- Size
  
  558KB
- MD5
  
  878bb01dcb17cbc542e36e3267cbbeb1
- SHA1
  
  750c04ae58d909c5f474ca68c34da23e5b645168
- SHA256
  
  639d1d555e9ce1c74642ffad317f4f99e714d5cdcf007533f65cab8f6f8c0a3a
- SHA512
  
  02a65cbf8ccc8fc2197dc465167b155286f06f209a7d7cafe4912c73709a176b9b1eff0238fb02796a89b3a8f23e9f7b2623e88b38e755f491913573a088f719
- SSDEEP
  
  12288:rhyTurb4C9y7vJSm1t3aJXMOlabM2jObU2SMvsqFn9rBz3mLEPFzXWxVIc6n:rYTskC9y7BSm1t3aJXMOlabM2CAmv/xL
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2