89b1927962736f2f9d693a93c8dfa0a83fb9302fa9ebc1cb1966c443efb8a19d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8fa446141a49b4a0d28c5fc912a2c531
Size

20KB
Sample

231220-javewshegk
MD5

8fa446141a49b4a0d28c5fc912a2c531
SHA1

1db734be947ac211edf574c0fe49f1e0f42a0602
SHA256

89b1927962736f2f9d693a93c8dfa0a83fb9302fa9ebc1cb1966c443efb8a19d
SHA512

685dcbacdcbe350fa6dd299c284c0f550bb4557cdda97f3b93629c6c0940af4a7760f45f6165fc85ecdebc288f9c223db7594076acb5f78fb4818b52ed1a2f63
SSDEEP

384:++O5MSsMrBlHYThglHfX0EFFT5ixoUXtEhEFAQoiPa78ns5ZRWGVCin9:++O5zBy2JYXBfoiPu8s5XWG9

Score

9^/10

discovery

Malware Config

Targets

- Target
  
  8fa446141a49b4a0d28c5fc912a2c531
- Size
  
  20KB
- MD5
  
  8fa446141a49b4a0d28c5fc912a2c531
- SHA1
  
  1db734be947ac211edf574c0fe49f1e0f42a0602
- SHA256
  
  89b1927962736f2f9d693a93c8dfa0a83fb9302fa9ebc1cb1966c443efb8a19d
- SHA512
  
  685dcbacdcbe350fa6dd299c284c0f550bb4557cdda97f3b93629c6c0940af4a7760f45f6165fc85ecdebc288f9c223db7594076acb5f78fb4818b52ed1a2f63
- SSDEEP
  
  384:++O5MSsMrBlHYThglHfX0EFFT5ixoUXtEhEFAQoiPa78ns5ZRWGVCin9:++O5zBy2JYXBfoiPu8s5XWG9
Score

9^/10

discovery
- Contacts a large (101195) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
- Deletes itself
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1