nullmixer | 94d1747e5b6abce14df29d2b9282e04d3efad4c079fe677e9dd3f9f439c0c581 | Triage

Sharing

General

Target

JaffaCakes118_497cc3ec2473b7d8d5f21630347d1ca2
Size

2.1MB
Sample

250101-gj8yjawqbx
MD5

497cc3ec2473b7d8d5f21630347d1ca2
SHA1

8bc35723c78ab52f50b7eafb8030f47499cfc9c9
SHA256

94d1747e5b6abce14df29d2b9282e04d3efad4c079fe677e9dd3f9f439c0c581
SHA512

93b3b0b6706dd1d423f7f5a1391f2df54d24c0054b7e1aeb0c453dcc8611294f20f18c8c0e8e2c96428499ae9b45893544e047944a27f3f461f102bc3b611309
SSDEEP

24576:21/k1MTYAY/HvLwhxtDitCNw0sGOs5+Wb1oux2l3juQ55313N:k/DyheL1N2l3F

Score

10^/10

nullmixer discovery dropper

Malware Config

Extracted

Family

nullmixer

C2

http://hsiens.xyz/

Targets

- Target
  
  JaffaCakes118_497cc3ec2473b7d8d5f21630347d1ca2
- Size
  
  2.1MB
- MD5
  
  497cc3ec2473b7d8d5f21630347d1ca2
- SHA1
  
  8bc35723c78ab52f50b7eafb8030f47499cfc9c9
- SHA256
  
  94d1747e5b6abce14df29d2b9282e04d3efad4c079fe677e9dd3f9f439c0c581
- SHA512
  
  93b3b0b6706dd1d423f7f5a1391f2df54d24c0054b7e1aeb0c453dcc8611294f20f18c8c0e8e2c96428499ae9b45893544e047944a27f3f461f102bc3b611309
- SSDEEP
  
  24576:21/k1MTYAY/HvLwhxtDitCNw0sGOs5+Wb1oux2l3juQ55313N:k/DyheL1N2l3F
Score

10^/10

nullmixer dropper discovery
- NullMixer
  NullMixer is a malware dropper leading to an infection chain of a wide variety of malware families.
  dropper nullmixer
- Nullmixer family
  nullmixer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

nullmixerdropper

behavioral2