bb8d77352949d330e8c4af63c13b7742bfa9f0b94c608664f021b13169251a20 | Triage

Sharing

General

Target

fastad4.exe
Size

47KB
Sample

241119-qkekra1nck
MD5

7077281a1e876202fe81ad4cde09ce2f
SHA1

eb8f6d02e59e2d39d7f7fe224f766f4b0b809829
SHA256

bb8d77352949d330e8c4af63c13b7742bfa9f0b94c608664f021b13169251a20
SHA512

f9d6ec237410b341bdc72d24fbe3a58640c8dc5d49c7c729b39a3670a49d1cadd31e6908ae31c88423c3554588ca939f9d042371b1978859af7592e140c59630
SSDEEP

768:Vn04RNfdSXe28HjPxWlk0CoCzXtBi4PY//I0D3fmoxbxAuauIRdzOc1prIwwXbdx:d04f1SMHjZ0k/tB1g//I0DuoxbxAHsc0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fastad4.exe
- Size
  
  47KB
- MD5
  
  7077281a1e876202fe81ad4cde09ce2f
- SHA1
  
  eb8f6d02e59e2d39d7f7fe224f766f4b0b809829
- SHA256
  
  bb8d77352949d330e8c4af63c13b7742bfa9f0b94c608664f021b13169251a20
- SHA512
  
  f9d6ec237410b341bdc72d24fbe3a58640c8dc5d49c7c729b39a3670a49d1cadd31e6908ae31c88423c3554588ca939f9d042371b1978859af7592e140c59630
- SSDEEP
  
  768:Vn04RNfdSXe28HjPxWlk0CoCzXtBi4PY//I0D3fmoxbxAuauIRdzOc1prIwwXbdx:d04f1SMHjZ0k/tB1g//I0DuoxbxAHsc0
Score

7^/10

discovery
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/INetC.dll
- Size
  
  21KB
- MD5
  
  2b342079303895c50af8040a91f30f71
- SHA1
  
  b11335e1cb8356d9c337cb89fe81d669a69de17e
- SHA256
  
  2d5d89025911e2e273f90f393624be4819641dbee1606de792362e442e54612f
- SHA512
  
  550452dadc86ecd205f40668894116790a456fe46e9985d68093d36cf32abf00edecb5c56ff0287464a0e819db7b3cc53926037a116de6c651332a7cc8035d47
- SSDEEP
  
  384:KOoVVefeWsI7rsIquPLNN546o0Ac9khYLMkIX0+Gzyekv:4VVaeE7wIqyJN5i
Score

3^/10

discovery
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4