d2371a2d5f4a2a1cbbbdae48a3346b5b00748fe199a32f8b1b04b1d2ece923f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11f0aea71dff500d3b78393b7ef081d5
Size

907KB
Sample

231225-kcfj7aahek
MD5

11f0aea71dff500d3b78393b7ef081d5
SHA1

ab6973498e5dc1691a50bcc031e54bbf6d29d9d4
SHA256

d2371a2d5f4a2a1cbbbdae48a3346b5b00748fe199a32f8b1b04b1d2ece923f8
SHA512

1e3cde2fb96aef25041d506d591776db110223d2e72bc27de17531a4408f6e2ff7abf964076a876d6386425b8cad62a31c9a2d0a968e48b0c991805353d4c7b4
SSDEEP

12288:mOgdNYJxlS/VprefFk0w/YPDPezKK6bosAEi/UluzDrobVIjVDa/ZS1:mOgdNYSts9E/APezP6bKcE4+a/ZS1

Score

7^/10

Malware Config

Targets

- Target
  
  11f0aea71dff500d3b78393b7ef081d5
- Size
  
  907KB
- MD5
  
  11f0aea71dff500d3b78393b7ef081d5
- SHA1
  
  ab6973498e5dc1691a50bcc031e54bbf6d29d9d4
- SHA256
  
  d2371a2d5f4a2a1cbbbdae48a3346b5b00748fe199a32f8b1b04b1d2ece923f8
- SHA512
  
  1e3cde2fb96aef25041d506d591776db110223d2e72bc27de17531a4408f6e2ff7abf964076a876d6386425b8cad62a31c9a2d0a968e48b0c991805353d4c7b4
- SSDEEP
  
  12288:mOgdNYJxlS/VprefFk0w/YPDPezKK6bosAEi/UluzDrobVIjVDa/ZS1:mOgdNYSts9E/APezP6bKcE4+a/ZS1
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2