ee486bee3bc23af4f8f44e886ce016b8d3cc1af33799567008736292d3f4a2b2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f5892f93c0b7ecc2f50a45ecd947119
Size

385KB
Sample

231225-jf6ecaeec7
MD5

0f5892f93c0b7ecc2f50a45ecd947119
SHA1

cd9d8d8739310c0e36164b7694a22f124aff6a3c
SHA256

ee486bee3bc23af4f8f44e886ce016b8d3cc1af33799567008736292d3f4a2b2
SHA512

038790131d904f9ff8c950b56e79ea4e098f192d46210c81ffbe79192bc36147f2de31bc0820af0bdb3ae5097fa4c69f9e7d4164b3133c8e954e092bee07c63c
SSDEEP

12288:pW+HIRFTET2rm5ucP2DbA5qSuA9IM5npnB:pnoXS2ri5PoApuSn5B

Score

7^/10

Malware Config

Targets

- Target
  
  0f5892f93c0b7ecc2f50a45ecd947119
- Size
  
  385KB
- MD5
  
  0f5892f93c0b7ecc2f50a45ecd947119
- SHA1
  
  cd9d8d8739310c0e36164b7694a22f124aff6a3c
- SHA256
  
  ee486bee3bc23af4f8f44e886ce016b8d3cc1af33799567008736292d3f4a2b2
- SHA512
  
  038790131d904f9ff8c950b56e79ea4e098f192d46210c81ffbe79192bc36147f2de31bc0820af0bdb3ae5097fa4c69f9e7d4164b3133c8e954e092bee07c63c
- SSDEEP
  
  12288:pW+HIRFTET2rm5ucP2DbA5qSuA9IM5npnB:pnoXS2ri5PoApuSn5B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2