434b98fa78507706dc40e662fea6b0f02e5d36e83fd6b8eb026336b89ccc05ef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

434b98fa78507706dc40e662fea6b0f02e5d36e83fd6b8eb026336b89ccc05ef
Size

1.7MB
Sample

231008-18qyssgd6y
MD5

c2b3685e522340433c14a1347a6b59ae
SHA1

46ea6f7f34b290e6b181c709307f95e09717b9a4
SHA256

434b98fa78507706dc40e662fea6b0f02e5d36e83fd6b8eb026336b89ccc05ef
SHA512

67598a60451318baaa10f7bebc6dca5c3b014ed215dd3377e173fd02f5f933e426c7e1af209d17d437618a7e3019eb2e30bc25cd04542d0d3786e48418078083
SSDEEP

24576:rQa+rRep38knZGbO4oFya8ZbRxaiXvnEc3Suvb7sNPwEFfTPCRi4Vz:rZ+rRe3zn4ioa8ZbRMiXO07sNPwERWV

Score

7^/10

Malware Config

Targets

- Target
  
  434b98fa78507706dc40e662fea6b0f02e5d36e83fd6b8eb026336b89ccc05ef
- Size
  
  1.7MB
- MD5
  
  c2b3685e522340433c14a1347a6b59ae
- SHA1
  
  46ea6f7f34b290e6b181c709307f95e09717b9a4
- SHA256
  
  434b98fa78507706dc40e662fea6b0f02e5d36e83fd6b8eb026336b89ccc05ef
- SHA512
  
  67598a60451318baaa10f7bebc6dca5c3b014ed215dd3377e173fd02f5f933e426c7e1af209d17d437618a7e3019eb2e30bc25cd04542d0d3786e48418078083
- SSDEEP
  
  24576:rQa+rRep38knZGbO4oFya8ZbRxaiXvnEc3Suvb7sNPwEFfTPCRi4Vz:rZ+rRe3zn4ioa8ZbRMiXO07sNPwERWV
Score

7^/10
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2