6147a8896c15a367f51c6eff3309f58196d72efc6ff756e4e55ff74cc9d26bfb | Triage

Sharing

General

Target

6147a8896c15a367f51c6eff3309f58196d72efc6ff756e4e55ff74cc9d26bfb
Size

1.2MB
Sample

230106-17frfacb36
MD5

ba53c8e0f9791f8e5f45e2c02e733f13
SHA1

d69647626d0beb5779450916a4fa89d3e4adb2bb
SHA256

6147a8896c15a367f51c6eff3309f58196d72efc6ff756e4e55ff74cc9d26bfb
SHA512

2d5e61fbb3e7364217a0eaad88f7fa8cf92b611cd0b5a56fe55bf8db050e323b1ab5940ea05ad14238de52d66d2a07e8cf1b542954919f763483c7e9d0c6cbd0
SSDEEP

24576:Dkyrk3eXEORnGOLogpmdhrquAgBh6jbgtca+ZuJ:YeUsRKkUtcM

Score

8^/10

Malware Config

Targets

- Target
  
  6147a8896c15a367f51c6eff3309f58196d72efc6ff756e4e55ff74cc9d26bfb
- Size
  
  1.2MB
- MD5
  
  ba53c8e0f9791f8e5f45e2c02e733f13
- SHA1
  
  d69647626d0beb5779450916a4fa89d3e4adb2bb
- SHA256
  
  6147a8896c15a367f51c6eff3309f58196d72efc6ff756e4e55ff74cc9d26bfb
- SHA512
  
  2d5e61fbb3e7364217a0eaad88f7fa8cf92b611cd0b5a56fe55bf8db050e323b1ab5940ea05ad14238de52d66d2a07e8cf1b542954919f763483c7e9d0c6cbd0
- SSDEEP
  
  24576:Dkyrk3eXEORnGOLogpmdhrquAgBh6jbgtca+ZuJ:YeUsRKkUtcM
Score

8^/10
- Downloads MZ/PE file
- Drops file in Drivers directory
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Web Service

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2