85c29ae93f5853dacd665466051400be015fcd2f590fa3a24f5b51521a69a385 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6a9f5e64fdab0e02d82874b72a161e5f
Size

2.6MB
Sample

231226-nh736scgbp
MD5

6a9f5e64fdab0e02d82874b72a161e5f
SHA1

24b8fbf07de3d7c9b79a1ab164824bf9ad5b1fe9
SHA256

85c29ae93f5853dacd665466051400be015fcd2f590fa3a24f5b51521a69a385
SHA512

fde53f852aaeaea0b9f3a1e2786ba7a6ea2ba2e02830723957b37a3b61d3476b5a5fceff38e804eb39966af069337c4380aafa7524f76b500ac710e3d35f80aa
SSDEEP

49152:7t3IfdkLWUEYUgwghcyJokuN4xLiaR9hMBQYk7E5IgwghcyJokuN4s:tIf2LWvguyJokuNkRHMBQb7E5MguyJoR

Score

7^/10

Malware Config

Targets

- Target
  
  6a9f5e64fdab0e02d82874b72a161e5f
- Size
  
  2.6MB
- MD5
  
  6a9f5e64fdab0e02d82874b72a161e5f
- SHA1
  
  24b8fbf07de3d7c9b79a1ab164824bf9ad5b1fe9
- SHA256
  
  85c29ae93f5853dacd665466051400be015fcd2f590fa3a24f5b51521a69a385
- SHA512
  
  fde53f852aaeaea0b9f3a1e2786ba7a6ea2ba2e02830723957b37a3b61d3476b5a5fceff38e804eb39966af069337c4380aafa7524f76b500ac710e3d35f80aa
- SSDEEP
  
  49152:7t3IfdkLWUEYUgwghcyJokuN4xLiaR9hMBQYk7E5IgwghcyJokuN4s:tIf2LWvguyJokuNkRHMBQb7E5MguyJoR
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2