a076a95d05b8eb48c7d20a9747c21783b05088063bbbb7329b3eb1693745d105 | Triage

Sharing

General

Target

7370cfaab1cd8af807f78857fe3a5274
Size

31KB
Sample

231220-amarksbecq
MD5

7370cfaab1cd8af807f78857fe3a5274
SHA1

d79e9164568060db84540d1e00011b4161fb196d
SHA256

a076a95d05b8eb48c7d20a9747c21783b05088063bbbb7329b3eb1693745d105
SHA512

d2125688048707fee32519d1272f942ec1b2d528dfc278ccb50dd847016a3b736f8a6fb566f195493ddaedf72a065766e6b19275db93bcfdec2a943f40b646ac
SSDEEP

768:yTkLsny9QEgYkVgqlRRAxrLLqJL6I50jDppMqEJ3UR:yT3E9A3mN/kLQjNpFf

Score

9^/10

discovery

Malware Config

Targets

- Target
  
  7370cfaab1cd8af807f78857fe3a5274
- Size
  
  31KB
- MD5
  
  7370cfaab1cd8af807f78857fe3a5274
- SHA1
  
  d79e9164568060db84540d1e00011b4161fb196d
- SHA256
  
  a076a95d05b8eb48c7d20a9747c21783b05088063bbbb7329b3eb1693745d105
- SHA512
  
  d2125688048707fee32519d1272f942ec1b2d528dfc278ccb50dd847016a3b736f8a6fb566f195493ddaedf72a065766e6b19275db93bcfdec2a943f40b646ac
- SSDEEP
  
  768:yTkLsny9QEgYkVgqlRRAxrLLqJL6I50jDppMqEJ3UR:yT3E9A3mN/kLQjNpFf
Score

9^/10

discovery
- Contacts a large (23829) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1