609484a78101e74d3e38d18c912303d5c36c89d5984620776a783b7a567cd329 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0dc9267190b048dee9c0c8291e8743bc
Size

385KB
Sample

231225-hy4sssbeb3
MD5

0dc9267190b048dee9c0c8291e8743bc
SHA1

a217496f0969b77c31503f1908a1230ca26ced4b
SHA256

609484a78101e74d3e38d18c912303d5c36c89d5984620776a783b7a567cd329
SHA512

96b2778b6792eb0a9c9ceee095d43dee2eb894b6601d79243ea2bd19a17c49a999b0ea5e662ba25b60d00a4b7d0ad9cd4b748996ddaf2aa40c7a6c42b2ef70d4
SSDEEP

6144:E4TL3bDuAPokUHQWnqwQ7ymwJTPI4REK5KzTDeDOqJ18xjv4UiJEvllB:E4TLrok16CWLjR4HiuxD42lB

Score

7^/10

Malware Config

Targets

- Target
  
  0dc9267190b048dee9c0c8291e8743bc
- Size
  
  385KB
- MD5
  
  0dc9267190b048dee9c0c8291e8743bc
- SHA1
  
  a217496f0969b77c31503f1908a1230ca26ced4b
- SHA256
  
  609484a78101e74d3e38d18c912303d5c36c89d5984620776a783b7a567cd329
- SHA512
  
  96b2778b6792eb0a9c9ceee095d43dee2eb894b6601d79243ea2bd19a17c49a999b0ea5e662ba25b60d00a4b7d0ad9cd4b748996ddaf2aa40c7a6c42b2ef70d4
- SSDEEP
  
  6144:E4TL3bDuAPokUHQWnqwQ7ymwJTPI4REK5KzTDeDOqJ18xjv4UiJEvllB:E4TLrok16CWLjR4HiuxD42lB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2