b275ad27ef28f1b0b47244b594b6af00d12c715eb8cf3f61c0109ccf52b2beb8 | Triage

Sharing

General

Target

b275ad27ef28f1b0b47244b594b6af00d12c715eb8cf3f61c0109ccf52b2beb8
Size

2.0MB
Sample

231114-xk6gssde39
MD5

081752719585907d695572f13eb421c3
SHA1

bd8d5875c1eaf24ba142e2e6dcf54fe19f5fdf98
SHA256

b275ad27ef28f1b0b47244b594b6af00d12c715eb8cf3f61c0109ccf52b2beb8
SHA512

7635f5271d7d21ceb09ec22fa520e368d87f82864ee51b3616b6c919f17854383063d51933468396163ebabd64ba4b485a54188106b0a19b310c354fa311f785
SSDEEP

49152:Y0MjjHCNtsXw5O+LN8J24pkypkkkXUzqnLnteAVD/Oo2TC33GdQLNR:r+ULL8YkAV/yTaWaR

Score

7^/10

Malware Config

Targets

- Target
  
  b275ad27ef28f1b0b47244b594b6af00d12c715eb8cf3f61c0109ccf52b2beb8
- Size
  
  2.0MB
- MD5
  
  081752719585907d695572f13eb421c3
- SHA1
  
  bd8d5875c1eaf24ba142e2e6dcf54fe19f5fdf98
- SHA256
  
  b275ad27ef28f1b0b47244b594b6af00d12c715eb8cf3f61c0109ccf52b2beb8
- SHA512
  
  7635f5271d7d21ceb09ec22fa520e368d87f82864ee51b3616b6c919f17854383063d51933468396163ebabd64ba4b485a54188106b0a19b310c354fa311f785
- SSDEEP
  
  49152:Y0MjjHCNtsXw5O+LN8J24pkypkkkXUzqnLnteAVD/Oo2TC33GdQLNR:r+ULL8YkAV/yTaWaR
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2