General

  • Target

    main.zip

  • Size

    43.6MB

  • Sample

    241204-y48lyavnhp

  • MD5

    39cce32a4cf53faf37d8a2d6af787066

  • SHA1

    8c298b1f8033155941787fb946f967e2dbc50ea4

  • SHA256

    a78f170f5a5af4160e224e68c5f2771b00d1ac95860196a73da00557da070bc3

  • SHA512

    a5f14a6760871aaf2f920231305183b6c5311697ff2f36ac227d33fb389b834abdfe003ad992cff60e3ec28e2797eb78ce65f57597df2eb171b5649f7ff1a3b9

  • SSDEEP

    786432:qsz7kYD4ckyNsG5zEkygYOouI3YaVmQOn8vLglz0GiCpXUm5gLKL9emo/X2R:DzHcFyK4okypuI3YMmQOn8vLHIUm5gLi

Score
10/10

Malware Config

Targets

    • Target

      mimikatz-main/inc/msasn1.h

    • Size

      23KB

    • MD5

      a662b3e0be46a29630d5ea085b87ae28

    • SHA1

      7189765c5d9b40e96c818839aed5a5d82094735d

    • SHA256

      6b7f132fb5343a92953c670a0e2ae4616564e240a94cf43e46900b016f947e70

    • SHA512

      77a5a7a14c80832d2783d28b6331442ba89fe49ac0937f43a5165827261d69e01fffddad1c1a59a0c8353152c18a884b8b40e42d714a966293b213d240cc2a3f

    • SSDEEP

      192:fUNKAYPEUMqaqj+iE/ub6EUA17zWaqSEajbXKF/GZfWZfZvnoDyZw47mmbybM8CR:fUNKf1CiE2b6q7yaOajbX8SGw4S1bq

    Score
    1/10
    • Target

      mimikatz-main/mimidrv/_build_.cmd

    • Size

      637B

    • MD5

      601717b59ed2e9402e498efebe93d332

    • SHA1

      9f3303decf37fe00968cb67c900f002b866e5483

    • SHA256

      907517095b6136bdb5fa1543bca8875548f537cab0a17cbfcb227041fbedbb0c

    • SHA512

      88505c7abc9987891274993c03476d033ac7cf59c4da4f93f4bf0c1e042d1d080b013423986aca32909120419ced4aa2c710638776526a9e4059416e2f8f03cd

    Score
    1/10
    • Target

      mimikatz-main/mimidrv/_clean_.cmd

    • Size

      429B

    • MD5

      d66f284033e3842f3f5d543b5c18b326

    • SHA1

      826b59af87d2db35b01f2d11cf182ce6e38fca14

    • SHA256

      4e771158f880ece627941fba4d5a4821cf6c6df45d64cb9a8ad6c94c8a12c4e6

    • SHA512

      c4b05494a1f4db0ca865a55e15ded1a8fff4668e316abceaf99080b9a773bf0f9420e19b71937dea14ebc6f7f7e28cea64b6681215f6c3c9a3431a67ee2e440d

    Score
    1/10
    • Target

      mimikatz-main/mimidrv/_rebuild_.cmd

    • Size

      59B

    • MD5

      f1c7bef2ea1c41beb8589e30ac94dcde

    • SHA1

      cf2c577a3ed3cfc22964aa9a8a795df18b94ea81

    • SHA256

      73ecfe6b2c1fc9af481f058690790c9c30437211b8c11df75b640a9668193f01

    • SHA512

      f7cb479e09f4e40f59c9fc719710953802daa67d5cf80ad539757fa2c2f37e74def4e77ec45318ff90e69720c9e5ffcca9f0a479c567663a12136212a9dd441f

    Score
    7/10
    • Deletes itself

    • Target

      mimikatz-main/mimikatz/mimikatz.c

    • Size

      7KB

    • MD5

      7c2fde85dfb620d738a2e53ec14ba576

    • SHA1

      3c862b27b6e4b418d26ed2738c296f941289ed90

    • SHA256

      404c77f9b1aed506a9c5a7c954b3aed7e0e26bab9b982bf58f4e114adaece57f

    • SHA512

      87b2e6ce8cc8c56b30796e6e400c907477efb07ad128ccb0b40276b59dccd88ba140470970c56fb5aefb120eadbaeae1c71e82e53bb45d53f2934406f3f9b510

    • SSDEEP

      192:eUk1YkBaRihONTAf1j+IyQu/kTbWFsYGTdRQi7oAuLLtu1I:eUk1Ykg04NToo/kTbWFsYGJRQi7B1I

    Score
    3/10
    • Target

      mimikatz-main/mimikatz/modules/kerberos/kuhl_m_kerberos_claims.c

    • Size

      5KB

    • MD5

      000d458b6a7d56165e86cafe7e5b822b

    • SHA1

      ae9d144334b40262cc0848d4b43d8828eff88ef2

    • SHA256

      12ddd75f720b53e5092c409b85e5350ffa6dd2178eac4e7b09ab8cb0a4dfd647

    • SHA512

      150b51029acf488605ccee0535a8bd20b9045e1939be495e81be816b3f9d4ebb1d5b1dccc1111f908cbb156e468d2aa4825bd908f2b096590b26a32b64b5d33f

    • SSDEEP

      96:2h2rQtl+zlRzVlvUGm5+rXW4v4Yrb66EkXd+4eDr:28kehRrkiXhEEdW3

    Score
    1/10
    • Target

      mimikatz-main/mimispool/README.md

    • Size

      7KB

    • MD5

      e7d3e544663016c48fc2ef5e6686f933

    • SHA1

      bff0b4ce081b5ae1daaced3641737267b2b28e3b

    • SHA256

      66d56ec3e456afca8052136bfd7e49c11cd28e44a5620f57239e74871b506aa8

    • SHA512

      cf2454e9997be5d4ce095764e734e39780b1334c11e9c7b667b2018d44fdaf0ad36c0488c82d2ce6969bbcdb4cfd70986fc26d0ba74b4ae8373f5b743bfbcaa5

    • SSDEEP

      96:a8olRmPOjscwJgh/GyjHuIXdSQLCgdYNnDQLHDKUsdY2YDQUCDKsRjZp/:iRmPOjTwJgh/GyjHuIXwQgiDCn7/

    Score
    3/10
    • Target

      mimikatz-main/modules/kull_m_file.c

    • Size

      6KB

    • MD5

      05374538c1ebff9a12492b03c28d014e

    • SHA1

      25cd5d27c7b50aa8d714620cae6642139a994ad9

    • SHA256

      5f24345704a130bfa97e5f162e84c9c519ce6c24dac37b616c2ec485e4d11942

    • SHA512

      cf4619aef204565a4cb239c325bb97542b94cc06b90e8c97aa0c4384746016bcb327e6fff89da5bcb9f28f3bfbe38babbf55dec85a087f8d669cf5b96d6e61c2

    • SSDEEP

      96:e8fHTxm166Qj+Hzaxbn9uoDLBryZLfdA1tYey:ffs1xQj+Tgn9JDL5yZLi1tw

    Score
    1/10
    • Target

      mimikatz-main/x64/mimikatz.exe

    • Size

      1.4MB

    • MD5

      957f2d9e3370212548a57020233e6ba7

    • SHA1

      ea5cd55a44b8be532af602002f498717fc192818

    • SHA256

      6688fb3039ad6df606d76a897ef1072cdc78b928335c6bfa691d99498caf5c4b

    • SHA512

      98baed5d1632311db5b65e5dcd70966e85f25478649e57b7fb6310be0eb3fe54f0bf2e70aa1b8d242479aac0f5d411388635d4b9cf8c3049917fdff7b00c9b63

    • SSDEEP

      24576:quogxWGhzk6Cufid1FeXUW07ZG6mpxUr7set:PWd1FekW0olpG

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks