380eb59ed23a813fe5f0aed034b140c78c18f27515ebb16207d2a0e3c4f34576 | Triage

Sharing

General

Target

380eb59ed23a813fe5f0aed034b140c78c18f27515ebb16207d2a0e3c4f34576
Size

3.0MB
Sample

231114-xtny4sfg71
MD5

376a49a832884a682712a3e275eaf0b5
SHA1

989320065e02df72da404166cfdaa6b4237e318f
SHA256

380eb59ed23a813fe5f0aed034b140c78c18f27515ebb16207d2a0e3c4f34576
SHA512

4c35d48e593e8e732f0e3c5a68182cb888c9949e71f91d598f16c824d7aa33aba341e00faee6c86f9cad8f74488994d3a0a3d6c78ee4a2059251e370547e8ed1
SSDEEP

49152:xIrk7QA9OgRbP77a4usjFu1gMZAP2p+fgbYUEksH+gJYUtuuLZz:xmkL9bT7o0Fu1W8XEfYKlz

Score

7^/10

Malware Config

Targets

- Target
  
  380eb59ed23a813fe5f0aed034b140c78c18f27515ebb16207d2a0e3c4f34576
- Size
  
  3.0MB
- MD5
  
  376a49a832884a682712a3e275eaf0b5
- SHA1
  
  989320065e02df72da404166cfdaa6b4237e318f
- SHA256
  
  380eb59ed23a813fe5f0aed034b140c78c18f27515ebb16207d2a0e3c4f34576
- SHA512
  
  4c35d48e593e8e732f0e3c5a68182cb888c9949e71f91d598f16c824d7aa33aba341e00faee6c86f9cad8f74488994d3a0a3d6c78ee4a2059251e370547e8ed1
- SSDEEP
  
  49152:xIrk7QA9OgRbP77a4usjFu1gMZAP2p+fgbYUEksH+gJYUtuuLZz:xmkL9bT7o0Fu1W8XEfYKlz
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2