2b081e543491e3dacd3ee3b823ab485a6ee7d0b5ea1f272a1755ca7b104ec4ad | Triage

Sharing

General

Target

65cf4d9b8942262c739ac51a15afd5e2
Size

907KB
Sample

231226-l3xrtsccan
MD5

65cf4d9b8942262c739ac51a15afd5e2
SHA1

f6a42e9c42f66de210cd1c05d29da76d7d88ce5f
SHA256

2b081e543491e3dacd3ee3b823ab485a6ee7d0b5ea1f272a1755ca7b104ec4ad
SHA512

c0b7f47c9140a99189e7b94ac221fb4ed996cf9aa62b4a13c2323905a12288c65b1e5448de3e8405ccbe4ad445bad6168d55e5723230e8f4b7da97553e63710a
SSDEEP

12288:QPs8l6E8n913mJMpeQrpz9eGNaK7W4xsOjpNIr3Q1xyIkjVDa/ZS1:QE8kKMp3p5eWWjOjbQQoa/ZS1

Score

7^/10

Malware Config

Targets

- Target
  
  65cf4d9b8942262c739ac51a15afd5e2
- Size
  
  907KB
- MD5
  
  65cf4d9b8942262c739ac51a15afd5e2
- SHA1
  
  f6a42e9c42f66de210cd1c05d29da76d7d88ce5f
- SHA256
  
  2b081e543491e3dacd3ee3b823ab485a6ee7d0b5ea1f272a1755ca7b104ec4ad
- SHA512
  
  c0b7f47c9140a99189e7b94ac221fb4ed996cf9aa62b4a13c2323905a12288c65b1e5448de3e8405ccbe4ad445bad6168d55e5723230e8f4b7da97553e63710a
- SSDEEP
  
  12288:QPs8l6E8n913mJMpeQrpz9eGNaK7W4xsOjpNIr3Q1xyIkjVDa/ZS1:QE8kKMp3p5eWWjOjbQQoa/ZS1
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2