1b385c27d2c3257eabc05902fdda6a0ffe9f2f6f75fafe8e894289d425797780 | Triage

Sharing

General

Target

5941f7f0b6e0e58ca67abac90a21a389
Size

385KB
Sample

231226-g4hxvaffd3
MD5

5941f7f0b6e0e58ca67abac90a21a389
SHA1

e8535af2099d6516adee19aacb5b446c731299b4
SHA256

1b385c27d2c3257eabc05902fdda6a0ffe9f2f6f75fafe8e894289d425797780
SHA512

a1b590717b2f6b35e62572fa0cb15572483107ee649324506d3e27aaa194db5a69797e0fe612ab3d3b0300854c4ce09bb6a739f10e3cecedaa3a4c531acada56
SSDEEP

6144:VaLzBkFckeyzkd8/h80LShrGniVCIoF0gmETvM3UbG9/88EPBBkZZ6B:VaB0/86SMnMCQHErUGy88IBkZMB

Score

7^/10

Malware Config

Targets

- Target
  
  5941f7f0b6e0e58ca67abac90a21a389
- Size
  
  385KB
- MD5
  
  5941f7f0b6e0e58ca67abac90a21a389
- SHA1
  
  e8535af2099d6516adee19aacb5b446c731299b4
- SHA256
  
  1b385c27d2c3257eabc05902fdda6a0ffe9f2f6f75fafe8e894289d425797780
- SHA512
  
  a1b590717b2f6b35e62572fa0cb15572483107ee649324506d3e27aaa194db5a69797e0fe612ab3d3b0300854c4ce09bb6a739f10e3cecedaa3a4c531acada56
- SSDEEP
  
  6144:VaLzBkFckeyzkd8/h80LShrGniVCIoF0gmETvM3UbG9/88EPBBkZZ6B:VaB0/86SMnMCQHErUGy88IBkZMB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2