83992eb9ae316d64e1ec0707810cf514d9be26824d021cea80dc17e6860754f2 | Triage

Sharing

General

Target

83992eb9ae316d64e1ec0707810cf514d9be26824d021cea80dc17e6860754f2.exe
Size

319KB
Sample

241121-g9v5cstpbm
MD5

9beb6b6505380339bec100646ecca09d
SHA1

ab3a19f69ddc9009b36e369b835da2ef6e09ec5f
SHA256

83992eb9ae316d64e1ec0707810cf514d9be26824d021cea80dc17e6860754f2
SHA512

342469f0776c865551dc43658324bb47d8d18f88b50892b70c1bd87d8646c6fe6248443e0f8f929fc3223b4ad229eb6aeb5f226224a2788eb78633d4a9375f3e
SSDEEP

6144:So4UpXWoc0vqHIwebkPRSGMznXzvcXYRsCei+Tt5+JVfMnAWmcAwJfEt:nGocwMIfOShPvcX4sCX+B4VfMO1wpEt

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  83992eb9ae316d64e1ec0707810cf514d9be26824d021cea80dc17e6860754f2.exe
- Size
  
  319KB
- MD5
  
  9beb6b6505380339bec100646ecca09d
- SHA1
  
  ab3a19f69ddc9009b36e369b835da2ef6e09ec5f
- SHA256
  
  83992eb9ae316d64e1ec0707810cf514d9be26824d021cea80dc17e6860754f2
- SHA512
  
  342469f0776c865551dc43658324bb47d8d18f88b50892b70c1bd87d8646c6fe6248443e0f8f929fc3223b4ad229eb6aeb5f226224a2788eb78633d4a9375f3e
- SSDEEP
  
  6144:So4UpXWoc0vqHIwebkPRSGMznXzvcXYRsCei+Tt5+JVfMnAWmcAwJfEt:nGocwMIfOShPvcX4sCX+B4VfMO1wpEt
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/INetC.dll
- Size
  
  24KB
- MD5
  
  640bff73a5f8e37b202d911e4749b2e9
- SHA1
  
  9588dd7561ab7de3bca392b084bec91f3521c879
- SHA256
  
  c1e568e25ec111184deb1b87cfda4bfec529b1abeab39b66539d998012f33502
- SHA512
  
  39c6c358e2b480c8cbebcc1da683924c8092fb2947f2da4a8df1b0dc1fdda61003d91d12232a436ec88ff4e0995b7f6ee8c6efbdca935eaa984001f7a72fea0a
- SSDEEP
  
  384:wv1j9e9dEs+rN+qFLAjNXT37vYnOrvFhSL+ZwcSyekzANZBJ:w1AvEs3HBLzYn29vYh
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  9625d5b1754bc4ff29281d415d27a0fd
- SHA1
  
  80e85afc5cccd4c0a3775edbb90595a1a59f5ce0
- SHA256
  
  c2f405d7402f815d0c3fadd9a50f0bbbb1bab9aa38fe347823478a2587299448
- SHA512
  
  dce52b640897c2e8dbfd0a1472d5377fa91fb9cf1aeff62604d014bccbe5b56af1378f173132abeb0edd18c225b9f8f5e3d3e72434aed946661e036c779f165b
- SSDEEP
  
  192:eX24sihno00Wfl97nH6BenXwWobpWBTtvShJ5omi7dJWjOlqSlS:D8QIl972eXqlWBFSt273YOlqz
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/nsJSON.dll
- Size
  
  23KB
- MD5
  
  311f1c457421ca059b31ccc375dc4168
- SHA1
  
  f7ac5e383fcae4facf7f16e69d909f181089edb3
- SHA256
  
  a17f2d61b8045741af80c656baa4e1296a9a2bbd5f0dc90a55a7389f4c1c177e
- SHA512
  
  e45d944b156bbe7f0056945d0ab3628f59f93ef772ad650d9e6dc757d4674b0a1b4a71c586799f2f0f913b5655a831f24acea65e47312c3de240c2f788f07d31
- SSDEEP
  
  384:R0qMhNdDqbTmld3uVazkgBIKLNyBjB7TVtTDEHxOuof/yhZyWr2/N:RMhNiTmldfktKgBj55lDVWr2/
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/xantacla.exe
- Size
  
  1.3MB
- MD5
  
  96238a71e172ea4fc303ecb6500f43e3
- SHA1
  
  9b00aa32ac2422d42bb3b8d5b7dcd386d1cf5872
- SHA256
  
  0a651dd601df4dd0f87466195a306a1fcf2af60e618db128148a9a5e23b87c4b
- SHA512
  
  64dc439de17a16898190931e3bb0eccdf597e6632671b3525b3faef5aa2a65b0a47e22141c934b57531e8b0d0b528b7c658b801fef5516ffd0515ede7c94c8dd
- SSDEEP
  
  12288:fjO1WKC09iDT++ZIxCRV2jgqj9FweOBHhc0d13NXVpAbAo:fqolfZDR4jgqj9uecH2cy
Score

3^/10

discovery
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10