General

  • Target

    1e808458dd8f9a8f60d754df72315ceddeba64dd36ce915d32dcacf74be465c7

  • Size

    3.1MB

  • MD5

    48ed36a06a49b006eb489cdbfbd07df6

  • SHA1

    5bddca7ef2d14248cf2fd0056876d92e597e8de3

  • SHA256

    1e808458dd8f9a8f60d754df72315ceddeba64dd36ce915d32dcacf74be465c7

  • SHA512

    f1b54eb7252798cac0d939f6b627074c26684e010a8311bb87f69160c9420ce0f1605f854c5a9157c6b94949943d1baf8043917771ef4744325730db130be0e8

  • SSDEEP

    98304:WZFdGrHksMD8MxU02fwJhpTu9I4AxdpyYQ:WrCMgMxU02oJhE902YQ

Score
10/10

Malware Config

Signatures

  • Mimikatz family
  • mimikatz is an open source tool to dump credentials on Windows 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1e808458dd8f9a8f60d754df72315ceddeba64dd36ce915d32dcacf74be465c7
    .zip

    Password: infected

  • 1f2df15442593b159e45d16a27e4d43d3a9062da212a588ba4c048f214a0b7be
    .exe windows:6 windows x86 arch:x86

    1b592c1c6260c7ecc488f8559ad29e2a


    Headers

    Imports

    Sections