15f0848f4b6c3040bc03181b55e191dc54e560fedeaa526eaa0aed891a6ed4e5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15f0848f4b6c3040bc03181b55e191dc54e560fedeaa526eaa0aed891a6ed4e5
Size

66KB
Sample

220919-y94j6sgch4
MD5

289682fbcd8b96973a184f0c2a8e2695
SHA1

17ee86fd2ac50a96da7a81c898928df2ce7520a9
SHA256

15f0848f4b6c3040bc03181b55e191dc54e560fedeaa526eaa0aed891a6ed4e5
SHA512

dc7acaee5df520d1ed814eb8a2d674c2b13f52dcd2a4692fe5890e478e8cbed34b941f617af5cc23c9eb39479897f651ab0c3543316e98c80f58172418db0070
SSDEEP

1536:7LFxOogrxoAq0QCanahBsElOV3UOvzWg8RapUFXzmdlF:VxOogrxy0xVhifV3VbWgcacXzmdH

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  15f0848f4b6c3040bc03181b55e191dc54e560fedeaa526eaa0aed891a6ed4e5
- Size
  
  66KB
- MD5
  
  289682fbcd8b96973a184f0c2a8e2695
- SHA1
  
  17ee86fd2ac50a96da7a81c898928df2ce7520a9
- SHA256
  
  15f0848f4b6c3040bc03181b55e191dc54e560fedeaa526eaa0aed891a6ed4e5
- SHA512
  
  dc7acaee5df520d1ed814eb8a2d674c2b13f52dcd2a4692fe5890e478e8cbed34b941f617af5cc23c9eb39479897f651ab0c3543316e98c80f58172418db0070
- SSDEEP
  
  1536:7LFxOogrxoAq0QCanahBsElOV3UOvzWg8RapUFXzmdlF:VxOogrxy0xVhifV3VbWgcacXzmdH
Score

8^/10

discovery
- Contacts a large (600) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Scanning

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2