e5eb6a056250b15f61e77f7d27662316c832dee1bfd6493630f72f726b70503a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

52809efae9ec20e09e8a1aa35e1af1a5
Size

4.0MB
Sample

231226-ek3f2ababr
MD5

52809efae9ec20e09e8a1aa35e1af1a5
SHA1

26827af0092c2a377cd1566698dbfac464bac48b
SHA256

e5eb6a056250b15f61e77f7d27662316c832dee1bfd6493630f72f726b70503a
SHA512

8ee121294efba1513054ebdff4bc866e8daa6520498c00a8c91b853f254c978ba4ad9b8d7676848e90ed04316c2683823a53756531414a749b03b97e9337d870
SSDEEP

49152:XGPjEhnqWQ5fYZeK93ghbq4TTow+lsghbyV8qXdTt/P9afxiMghbq4TTow+lsghH:WPkFIIohTWROV8qtx9aYhTWRH

Score

7^/10

Malware Config

Targets

- Target
  
  52809efae9ec20e09e8a1aa35e1af1a5
- Size
  
  4.0MB
- MD5
  
  52809efae9ec20e09e8a1aa35e1af1a5
- SHA1
  
  26827af0092c2a377cd1566698dbfac464bac48b
- SHA256
  
  e5eb6a056250b15f61e77f7d27662316c832dee1bfd6493630f72f726b70503a
- SHA512
  
  8ee121294efba1513054ebdff4bc866e8daa6520498c00a8c91b853f254c978ba4ad9b8d7676848e90ed04316c2683823a53756531414a749b03b97e9337d870
- SSDEEP
  
  49152:XGPjEhnqWQ5fYZeK93ghbq4TTow+lsghbyV8qXdTt/P9afxiMghbq4TTow+lsghH:WPkFIIohTWROV8qtx9aYhTWRH
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2