74b293a48cb11c929c7bb402aca3306248f557a1d658e0612cb066c24e3fa4f4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74b293a48cb11c929c7bb402aca3306248f557a1d658e0612cb066c24e3fa4f4
Size

2.0MB
Sample

231114-xmxyfadg55
MD5

e9fd24ea712b2e084a6a7e3236b5ff58
SHA1

361e425342966c18791a5925b40a5f861deae27a
SHA256

74b293a48cb11c929c7bb402aca3306248f557a1d658e0612cb066c24e3fa4f4
SHA512

3eb825b2d2acebef06385dbf30acff2975dec6540aabb3be1638a975dcb0946fc4907176bb088cf67332f37e029127d05eb1d9b6d78cbe77a387ab63be497542
SSDEEP

49152:MwJCKSldeA98DaLN8J24pkypkkkXUzqnLnteAVD/Oo2TC33GdQLNR:MnKSyD68YkAV/yTaWaR

Score

7^/10

Malware Config

Targets

- Target
  
  74b293a48cb11c929c7bb402aca3306248f557a1d658e0612cb066c24e3fa4f4
- Size
  
  2.0MB
- MD5
  
  e9fd24ea712b2e084a6a7e3236b5ff58
- SHA1
  
  361e425342966c18791a5925b40a5f861deae27a
- SHA256
  
  74b293a48cb11c929c7bb402aca3306248f557a1d658e0612cb066c24e3fa4f4
- SHA512
  
  3eb825b2d2acebef06385dbf30acff2975dec6540aabb3be1638a975dcb0946fc4907176bb088cf67332f37e029127d05eb1d9b6d78cbe77a387ab63be497542
- SSDEEP
  
  49152:MwJCKSldeA98DaLN8J24pkypkkkXUzqnLnteAVD/Oo2TC33GdQLNR:MnKSyD68YkAV/yTaWaR
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2