d199504123a0ddfacd241bc39fff0d15d2eba859c8ecc95a89e058067c7b5021 | Triage

Resubmissions

12-05-2023 01:40

230512-b3nh2sde7w 7

12-05-2023 01:39

230512-b2yydsde7v 7

12-05-2023 01:37

230512-b2bsvsbc43 7

Sharing

General

Target

NOTMALWARE.exe
Size

6.1MB
Sample

230512-b3nh2sde7w
MD5

8de136c99e448cb3787336570197ef0b
SHA1

07612a501d123fc9876dc5a6b5d8f1459a2d50a3
SHA256

d199504123a0ddfacd241bc39fff0d15d2eba859c8ecc95a89e058067c7b5021
SHA512

29c657f4cfe8f192b1e7f96694209b2e692f63d689c4827226410c2561b46908296d07e02b47d099866389f348fa0fc68d891a3f343e3735e970be9b41ca4af5
SSDEEP

98304:8oZIfh7ZMD/x/0feyGutbQ940BDlgwdnpka9R/k9t+2MGt+Nkpogug6ZqREPOhIv:8mmuDfyGuwBdnpkYRM66ogVCmh

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  NOTMALWARE.exe
- Size
  
  6.1MB
- MD5
  
  8de136c99e448cb3787336570197ef0b
- SHA1
  
  07612a501d123fc9876dc5a6b5d8f1459a2d50a3
- SHA256
  
  d199504123a0ddfacd241bc39fff0d15d2eba859c8ecc95a89e058067c7b5021
- SHA512
  
  29c657f4cfe8f192b1e7f96694209b2e692f63d689c4827226410c2561b46908296d07e02b47d099866389f348fa0fc68d891a3f343e3735e970be9b41ca4af5
- SSDEEP
  
  98304:8oZIfh7ZMD/x/0feyGutbQ940BDlgwdnpka9R/k9t+2MGt+Nkpogug6ZqREPOhIv:8mmuDfyGuwBdnpkYRM66ogVCmh
Score

7^/10
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1