6ec42a9fd959f9c8a3f04693315c1c6be9673b701f8d7f2a5c2f91866a0d317a | Triage

Sharing

General

Target

201c9fd8f10c52b07e2c087c5c4d562f
Size

907KB
Sample

231225-bq26nsaea5
MD5

201c9fd8f10c52b07e2c087c5c4d562f
SHA1

9bd70113c41d9f3be9a0032433fde030f396a513
SHA256

6ec42a9fd959f9c8a3f04693315c1c6be9673b701f8d7f2a5c2f91866a0d317a
SHA512

bc6f8f8745483915eb5fa455a30d303256c84a4d477a130300616f4642d38a0c4e6a46827f11afdc47de154032c02f009cc128f7aeff9143cf97ebe052f909f4
SSDEEP

12288:BG2sMVsOnDmaO6CqO+L9ZchtKG8BGwOREMi7Bjiv6Ed5b9+67pWO4jhjVDa/ZS1:sNMLoaLCRWMkjiv6EOXOwa/ZS1

Score

7^/10

Malware Config

Targets

- Target
  
  201c9fd8f10c52b07e2c087c5c4d562f
- Size
  
  907KB
- MD5
  
  201c9fd8f10c52b07e2c087c5c4d562f
- SHA1
  
  9bd70113c41d9f3be9a0032433fde030f396a513
- SHA256
  
  6ec42a9fd959f9c8a3f04693315c1c6be9673b701f8d7f2a5c2f91866a0d317a
- SHA512
  
  bc6f8f8745483915eb5fa455a30d303256c84a4d477a130300616f4642d38a0c4e6a46827f11afdc47de154032c02f009cc128f7aeff9143cf97ebe052f909f4
- SSDEEP
  
  12288:BG2sMVsOnDmaO6CqO+L9ZchtKG8BGwOREMi7Bjiv6Ed5b9+67pWO4jhjVDa/ZS1:sNMLoaLCRWMkjiv6EOXOwa/ZS1
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2