a3fbfe25541744380cb53a2faca2d7c61f8e9973520e82acb379127a99db867d | Triage

Sharing

General

Target

winservices.exe
Size

293KB
Sample

220606-ecvffsdhf4
MD5

a2585bf4942a42f05138655b88554846
SHA1

5d8a9f833f1fdd52096207e21afe5f9b7653180c
SHA256

a3fbfe25541744380cb53a2faca2d7c61f8e9973520e82acb379127a99db867d
SHA512

b83d318454cb6cee7cb6d71962bd5a9d5d73bf34fba0a4527578534848f1f3d35e20ebb75551eedf608eb17689499be88a58209811479f3fe7c494907f65aa24

Score

6^/10

Malware Config

Targets

- Target
  
  winservices.exe
- Size
  
  293KB
- MD5
  
  a2585bf4942a42f05138655b88554846
- SHA1
  
  5d8a9f833f1fdd52096207e21afe5f9b7653180c
- SHA256
  
  a3fbfe25541744380cb53a2faca2d7c61f8e9973520e82acb379127a99db867d
- SHA512
  
  b83d318454cb6cee7cb6d71962bd5a9d5d73bf34fba0a4527578534848f1f3d35e20ebb75551eedf608eb17689499be88a58209811479f3fe7c494907f65aa24
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2