3194849b09575cf8052c8d10e99e264b280b29b57b9415cdd1bfbb6297dfe7af | Triage

Sharing

General

Target

WinrarKG.exe
Size

381KB
Sample

230712-s11t2adh28
MD5

0d2c7fdaffd974980053fc7ca44a054c
SHA1

9b8b9a5d2bdceddea776f519ae026adbf88625a3
SHA256

3194849b09575cf8052c8d10e99e264b280b29b57b9415cdd1bfbb6297dfe7af
SHA512

e8c75907fa14b09266a576c8abfebcc2f3ac0ea4c05a71bb3837b0132973a35370f96c63188e6bc0f22d7160c6682ea2b5a58bcbc411b7607d7ffdac8a944749
SSDEEP

6144:AIqmOc0YZtOc0YZtOc0YZN1J4KfrNpx1J4K5rNpk:7Oc0otOc0otOc0ohJfRplJ5Rpk

Score

6^/10

Malware Config

Targets

- Target
  
  WinrarKG.exe
- Size
  
  381KB
- MD5
  
  0d2c7fdaffd974980053fc7ca44a054c
- SHA1
  
  9b8b9a5d2bdceddea776f519ae026adbf88625a3
- SHA256
  
  3194849b09575cf8052c8d10e99e264b280b29b57b9415cdd1bfbb6297dfe7af
- SHA512
  
  e8c75907fa14b09266a576c8abfebcc2f3ac0ea4c05a71bb3837b0132973a35370f96c63188e6bc0f22d7160c6682ea2b5a58bcbc411b7607d7ffdac8a944749
- SSDEEP
  
  6144:AIqmOc0YZtOc0YZtOc0YZN1J4KfrNpx1J4K5rNpk:7Oc0otOc0otOc0ohJfRplJ5Rpk
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1