nullmixer | 4669dca684cebf0521ca5fa5852f746a97f28ec1163e98097d4ec931f5660ba8 | Triage

Sharing

General

Target

JaffaCakes118_1fc9c4e4204704d8c5190a113d4f8430
Size

2.1MB
Sample

250106-m482xsvlbw
MD5

1fc9c4e4204704d8c5190a113d4f8430
SHA1

fe08e5c17c157c1cbece217fbbe4b7e35b93fd6b
SHA256

4669dca684cebf0521ca5fa5852f746a97f28ec1163e98097d4ec931f5660ba8
SHA512

93e0f08ce11b61dcdcb2a93a653eb5ac6cc4c1f3491880ea65fbc2bfbf22c0db99a5262635bff412bcf3c2fffe6b580818395638fa20535dbb7dff982eae3511
SSDEEP

24576:V1WkP9YaYFb6X6tVGvi6tKlDotwJ3+l3juQ55313N:V1hQ/Doeol3F

Score

10^/10

nullmixer discovery dropper

Malware Config

Extracted

Family

nullmixer

C2

http://wensela.xyz/

Targets

- Target
  
  JaffaCakes118_1fc9c4e4204704d8c5190a113d4f8430
- Size
  
  2.1MB
- MD5
  
  1fc9c4e4204704d8c5190a113d4f8430
- SHA1
  
  fe08e5c17c157c1cbece217fbbe4b7e35b93fd6b
- SHA256
  
  4669dca684cebf0521ca5fa5852f746a97f28ec1163e98097d4ec931f5660ba8
- SHA512
  
  93e0f08ce11b61dcdcb2a93a653eb5ac6cc4c1f3491880ea65fbc2bfbf22c0db99a5262635bff412bcf3c2fffe6b580818395638fa20535dbb7dff982eae3511
- SSDEEP
  
  24576:V1WkP9YaYFb6X6tVGvi6tKlDotwJ3+l3juQ55313N:V1hQ/Doeol3F
Score

10^/10

nullmixer dropper discovery
- NullMixer
  NullMixer is a malware dropper leading to an infection chain of a wide variety of malware families.
  dropper nullmixer
- Nullmixer family
  nullmixer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

nullmixerdropper

behavioral2