6f876c25f3563312301fc96ca3b4d19740a74f8d785ecffbe2a7eb8c73d6bf84 | Triage

Sharing

General

Target

246d85ca8297e37b8476bb35a8f66a97
Size

385KB
Sample

231225-rhgg1afgan
MD5

246d85ca8297e37b8476bb35a8f66a97
SHA1

ab7c08b05af65e4d92c94a15eba85e7617448dca
SHA256

6f876c25f3563312301fc96ca3b4d19740a74f8d785ecffbe2a7eb8c73d6bf84
SHA512

fa4fe7b028f378933e19d4061c88eb97974d0fbb0b24e519e4a9324a85caac8a999525ede06cf88d07b6c5e0ab3eeb8643ef63d9ec2f182ccc4eeaa35e6a431d
SSDEEP

12288:/E7+cKukHtn5K9jwb8QJ1mtIECBSAw3AxCCrzehayyo/PB:/E7+F5/R1u6SMxCCuhaA/PB

Score

7^/10

Malware Config

Targets

- Target
  
  246d85ca8297e37b8476bb35a8f66a97
- Size
  
  385KB
- MD5
  
  246d85ca8297e37b8476bb35a8f66a97
- SHA1
  
  ab7c08b05af65e4d92c94a15eba85e7617448dca
- SHA256
  
  6f876c25f3563312301fc96ca3b4d19740a74f8d785ecffbe2a7eb8c73d6bf84
- SHA512
  
  fa4fe7b028f378933e19d4061c88eb97974d0fbb0b24e519e4a9324a85caac8a999525ede06cf88d07b6c5e0ab3eeb8643ef63d9ec2f182ccc4eeaa35e6a431d
- SSDEEP
  
  12288:/E7+cKukHtn5K9jwb8QJ1mtIECBSAw3AxCCrzehayyo/PB:/E7+F5/R1u6SMxCCuhaA/PB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2