849d5700c0c0ea4b6f3f81f4aa62a549f08a9af4a2d6c2ee4ec26ade6dc82077 | Triage

Sharing

General

Target

a0114420ff98f4f09df676527add4ccaaf4326b4bd0c87b153d1ea71adf50022.zip
Size

3.2MB
Sample

230821-2lmhjagg64
MD5

046a008457b8f49939e372815b7a6eec
SHA1

118369cc74f097b863f718f1d6a41479f0dc62b6
SHA256

849d5700c0c0ea4b6f3f81f4aa62a549f08a9af4a2d6c2ee4ec26ade6dc82077
SHA512

e23c5ffad46a6e2aae1d0b46449653b6a2430e2b80afb84607ee84f70a3f8e5332246cbc94098876f5f2f5dfe5f2d5e0943d22739ce3c8db5aec0fd0f88c51d2
SSDEEP

98304:+SIZSZDSJFZE4xHCqH16Ajg74R8vNIrScnRoi5oCHf:uJFZ9ZCqH1vE74+VIr3Roi5ZHf

Score

8^/10

Malware Config

Targets

- Target
  
  installer-package.exe
- Size
  
  302.3MB
- MD5
  
  5846dc26ee52c800031bbb1939c771c2
- SHA1
  
  cbdd0a97644525e705a2d18005738a92a4f48b6d
- SHA256
  
  a0114420ff98f4f09df676527add4ccaaf4326b4bd0c87b153d1ea71adf50022
- SHA512
  
  e84048e02239ad8c78ea3d57cbc705d283c630514dc9cbc316d7edba54a7e5b33c95b8ed40d6fe23d74e4d19308f078e39955465df7a2e2d7cd71fd73d0f662f
- SSDEEP
  
  49152:ihduY5Y45wfJqs4W+f3jJa3ppppppppppppppppppppppppppppppppppppppppV:iy
Score

8^/10
- Blocklisted process makes network request
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2