General

  • Target

    mixazed_20210815-193857

  • Size

    200KB

  • Sample

    210815-41ga9lcj7s

  • MD5

    db4a99a2222cd4ff1e38cb7a167e6782

  • SHA1

    ac220091ee274e285a84f465797cf0de426c2c95

  • SHA256

    7b6ebb8c45b9da5e1253fcd5dbcf770726caaf901240fa9b632156df21795c1a

  • SHA512

    517813d41ce1530e8aacc85364fc5aa5c5167caff36de107b3e9537cb59fecc11e93f2342139578bf9c94c28c96c3e0c4797c47d0cfd8188632b2d9581bcfbe6

Score
10/10

Malware Config

Targets

    • Target

      mixazed_20210815-193857

    • Size

      200KB

    • MD5

      db4a99a2222cd4ff1e38cb7a167e6782

    • SHA1

      ac220091ee274e285a84f465797cf0de426c2c95

    • SHA256

      7b6ebb8c45b9da5e1253fcd5dbcf770726caaf901240fa9b632156df21795c1a

    • SHA512

      517813d41ce1530e8aacc85364fc5aa5c5167caff36de107b3e9537cb59fecc11e93f2342139578bf9c94c28c96c3e0c4797c47d0cfd8188632b2d9581bcfbe6

    Score
    10/10
    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

    • OnlyLogger Payload

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

        Discovery

          Execution

            Exfiltration

              Impact

                Initial Access

                  Lateral Movement

                    Persistence

                      Privilege Escalation