General

  • Target

    bd2ba74a522871b36c53175871f09331b7cac61df369e735d9924b6f97ea0935

  • Size

    2.6MB

  • Sample

    250402-ndrwdsv1g1

  • MD5

    608a23f60242850ae9351b2e2c58c8ee

  • SHA1

    a7b90d773f1cc81b3d4751fa36fb87031af5bd64

  • SHA256

    bd2ba74a522871b36c53175871f09331b7cac61df369e735d9924b6f97ea0935

  • SHA512

    6a91cbbaa4ae40224d97b886dabe39316b34ee1a78e395a3936910a564cb468c306e18a1f33d1213d6e0647d87902b719c1748c7f4d79d1b4692625ece00b2a5

  • SSDEEP

    49152:EJVCI7XBE2IuF64rIlmdiiyft05YjqakE3Aq2vu7Ew:EJV5VECgf2w3L2vu

Malware Config

Targets

    • Target

      bd2ba74a522871b36c53175871f09331b7cac61df369e735d9924b6f97ea0935

    • Size

      2.6MB

    • MD5

      608a23f60242850ae9351b2e2c58c8ee

    • SHA1

      a7b90d773f1cc81b3d4751fa36fb87031af5bd64

    • SHA256

      bd2ba74a522871b36c53175871f09331b7cac61df369e735d9924b6f97ea0935

    • SHA512

      6a91cbbaa4ae40224d97b886dabe39316b34ee1a78e395a3936910a564cb468c306e18a1f33d1213d6e0647d87902b719c1748c7f4d79d1b4692625ece00b2a5

    • SSDEEP

      49152:EJVCI7XBE2IuF64rIlmdiiyft05YjqakE3Aq2vu7Ew:EJV5VECgf2w3L2vu

    • Mimikatz

      mimikatz is an open source tool to dump credentials on Windows.

    • Mimikatz family

    • OS Credential Dumping: LSASS Memory

      Malicious access to Credentials History.

    • mimikatz is an open source tool to dump credentials on Windows

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks