3f33840f0a1bd8532401112d3671f2b46e42dd62ef01b4e889125cf7bc83ac4e | Triage

Sharing

General

Target

3f33840f0a1bd8532401112d3671f2b46e42dd62ef01b4e889125cf7bc83ac4e
Size

2.0MB
Sample

230816-dz3jxaeh75
MD5

3148a980491fa94f8710ffde79fc4ae9
SHA1

4c3745691a0692bc62d66f379186a6f98d4a1b09
SHA256

3f33840f0a1bd8532401112d3671f2b46e42dd62ef01b4e889125cf7bc83ac4e
SHA512

552bc0a1eba3fce622f63590580b2bd13a0b2702af0188258b22680909e4d85905618ccc7394095d716b780a936ad4dbd3152803b35d755337d215cb945d07f3
SSDEEP

49152:KB66w1bqMAU/w1/wwf6GmViVGuxwyZWNxLwXzqnkOnOu9T4sy1d:KB66wXAU/xmQGppWNx0XzqnkOnOwby1d

Score

6^/10

Malware Config

Targets

- Target
  
  WinXray.exe
- Size
  
  4.8MB
- MD5
  
  462ec930575e457d06ef08020c5ecfa9
- SHA1
  
  9ddfa560defde039309adfb17d6d7477898b9d21
- SHA256
  
  bf71c816244b237ee5c67de325164d20b151af9d8ed2570a6d4be9a3902f3a37
- SHA512
  
  8509b95dc7bbfaabc4eb45bbe6a7c1af52e08a7f1fbe4c2c3231c1bb1c261cb099efc253d8ec01e04fbf0d45b882eb57a2a98ce754b9e6e2b0571929ed5f2ccf
- SSDEEP
  
  98304:h9vP01k7vBnuFznQ65cOgbBAUZLp/k/9u:PvPzwMVFsw
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2