Overview

overview

7

Static

static

1

AzureDONTC...ME.exe

windows10-1703-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    AzureDONTCHANGENAME.exe

  • Size

    19.8MB

  • Sample

    230422-v8my9ahf5z

  • MD5

    bcf4e24dc466da921d0032c3dbcd7c6f

  • SHA1

    daed5051c7acb82d93aa792df5ddbb41c2264f17

  • SHA256

    0adf239cd19c06489172261bebdb04a000678a7ceec120cfe115839a2999bef6

  • SHA512

    c057f8dd819fc821e9321e456f99db6b52d07882854a082c5ad4561014cda1051819a55ab8b10202fef06c46d752d26014ed36115cfe93f7c2690c5f3e64a32a

  • SSDEEP

    393216:7YMxuYnnDpg9demBEWJ71CdNVV8QuM2jlQprdbhkSQN9i:T0uDpgJJd1CrVeQuM2JQfbqM

Score
7/10
agilenet

Malware Config

Targets

    • Target

      AzureDONTCHANGENAME.exe

    • Size

      19.8MB

    • MD5

      bcf4e24dc466da921d0032c3dbcd7c6f

    • SHA1

      daed5051c7acb82d93aa792df5ddbb41c2264f17

    • SHA256

      0adf239cd19c06489172261bebdb04a000678a7ceec120cfe115839a2999bef6

    • SHA512

      c057f8dd819fc821e9321e456f99db6b52d07882854a082c5ad4561014cda1051819a55ab8b10202fef06c46d752d26014ed36115cfe93f7c2690c5f3e64a32a

    • SSDEEP

      393216:7YMxuYnnDpg9demBEWJ71CdNVV8QuM2jlQprdbhkSQN9i:T0uDpgJJd1CrVeQuM2JQfbqM

    Score
    7/10
    agilenet

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

      agilenet

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

1
T1102

Impact

Tasks