36cfdf9e034b5e70cab2040f5fd2179d88072a004dbeea44c307ed74c3a4307f | Triage

Sharing

General

Target

36cfdf9e034b5e70cab2040f5fd2179d88072a004dbeea44c307ed74c3a4307f
Size

1.6MB
Sample

231114-xt892see73
MD5

1e7b86493043a4da43573d9d37ee6acc
SHA1

d86e8b114deb847d75286812955e12c0bf1132b9
SHA256

36cfdf9e034b5e70cab2040f5fd2179d88072a004dbeea44c307ed74c3a4307f
SHA512

b48263fd663902c678f9f79ca983d77b65f292d952385ea66c234517e1b52873864febd222fde2da24c6d01c2eb135e4dd57bfde26f0d3e1c136c83cdd3bdb3d
SSDEEP

24576:NsT8pdM5CEV3MRsnaX6EFbvTUdnZLpqB63KAws/HcrpU0O2SkKuyD:M8a2RuaKEFbdtAws/HcVilkKd

Score

7^/10

Malware Config

Targets

- Target
  
  36cfdf9e034b5e70cab2040f5fd2179d88072a004dbeea44c307ed74c3a4307f
- Size
  
  1.6MB
- MD5
  
  1e7b86493043a4da43573d9d37ee6acc
- SHA1
  
  d86e8b114deb847d75286812955e12c0bf1132b9
- SHA256
  
  36cfdf9e034b5e70cab2040f5fd2179d88072a004dbeea44c307ed74c3a4307f
- SHA512
  
  b48263fd663902c678f9f79ca983d77b65f292d952385ea66c234517e1b52873864febd222fde2da24c6d01c2eb135e4dd57bfde26f0d3e1c136c83cdd3bdb3d
- SSDEEP
  
  24576:NsT8pdM5CEV3MRsnaX6EFbvTUdnZLpqB63KAws/HcrpU0O2SkKuyD:M8a2RuaKEFbdtAws/HcVilkKd
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2