connectback | 4b4116cb3c295b3417a075a84a322b4f96a7f98c76c631450ea359f0244ff250 | Triage

Submit
Reports

Overview

overview

Static

static

b0baf07169...71.zip

windows10-2004-x64

1

Resubmissions

09-06-2023 13:04

230609-qaxzcada3z 10

09-06-2023 13:00

230609-p8ltasda3t 10

Sharing

General

Target

b0baf071692d63267aaf41bd3db933826523b59e8fca49655e1656ce0c656c71.zip
Size

7.0MB
Sample

230609-qaxzcada3z
MD5

f395e476876943cec76696f64284b548
SHA1

e07b69545567a279731bb22ae081e8cfd9e5f15a
SHA256

4b4116cb3c295b3417a075a84a322b4f96a7f98c76c631450ea359f0244ff250
SHA512

3b811252ce1bd74b2056797ac182c55f4e771da579b9b00d8f715a65f9077a3ae5918c72fcc5c393ab46dcfa16d70d1ac1a1e519f135c5c2b426d1c1366c9ce4
SSDEEP

196608:TVOtcycNPxVdPvOqlxxLEBx8nZN4ysSVN/rkM:5OBcXHvjlxhg8HTnrkM

Score

10^/10

connectback

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b0baf071692d63267aaf41bd3db933826523b59e8fca49655e1656ce0c656c71.zip

Resource

win10v2004-20230220-en

windows10-2004-x64

9 signatures

1800 seconds

Malware Config

Extracted

Family

connectback

C2

185.232.65.146:1987

Targets

- Target
  
  b0baf071692d63267aaf41bd3db933826523b59e8fca49655e1656ce0c656c71.zip
- Size
  
  7.0MB
- MD5
  
  f395e476876943cec76696f64284b548
- SHA1
  
  e07b69545567a279731bb22ae081e8cfd9e5f15a
- SHA256
  
  4b4116cb3c295b3417a075a84a322b4f96a7f98c76c631450ea359f0244ff250
- SHA512
  
  3b811252ce1bd74b2056797ac182c55f4e771da579b9b00d8f715a65f9077a3ae5918c72fcc5c393ab46dcfa16d70d1ac1a1e519f135c5c2b426d1c1366c9ce4
- SSDEEP
  
  196608:TVOtcycNPxVdPvOqlxxLEBx8nZN4ysSVN/rkM:5OBcXHvjlxhg8HTnrkM
Score

1^/10
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy