b749a25134cba2441e84834c074ef98e2fe8950ec7ad303a98c8e7bf8e7b6f0b | Triage

Resubmissions

03/09/2023, 17:03

230903-vkrbrsbb3s 3

03/09/2023, 17:00

230903-vh6zfabe53 6

Sharing

Copy URL Twitter E-mail

General

Target

trauma.rar
Size

73KB
Sample

230903-vh6zfabe53
MD5

098a2117fc7cd834fd3a893a326780e1
SHA1

17d167ae155b9259898d811b18d0aac6b1ba3bc7
SHA256

b749a25134cba2441e84834c074ef98e2fe8950ec7ad303a98c8e7bf8e7b6f0b
SHA512

c52417cc637e08ad3d79a13f6b17e953c05e990f23ba0218797785604af02d268fb16f8b7b963186eec51f1e3847eae5d4a8cae57a30eb204607b2015c4bf106
SSDEEP

1536:bzgtKCsIGF+B/8rFPWp3kBhP6RtUh/8Xf6PnQ6XBuKrVa6HB:9I2amV8WktUhkXCPQ6XBlBa6h

Score

6^/10

Malware Config

Targets

- Target
  
  trauma..exe
- Size
  
  120KB
- MD5
  
  13e8652e531c8fe489b4db297a17c801
- SHA1
  
  2a805a10bf0a3deae25a1d57d152f6c4234767e2
- SHA256
  
  2a4513bc24e367ab6a59410f445dfcca3ed3d5ee2235cad08b1331ee9e301481
- SHA512
  
  b318620d212607e7d9d55cc76538aefe440358a678d2c4db4cc495ea17216b1d51d123de6a95f9684b0bdd88fb479dbea640367b7f3d5cec863cd18a84a1e149
- SSDEEP
  
  3072:e7DhdC6kzWypvaQ0FxyNTBfzDVb733zxJdyrW:eBlkZvaF4NTB7FlJdyS
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2