12d36c9297fe362733d70e4507d782fc472f7c704dd6bea18171883a6bd19353 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

709dcabb900b41ba77ce778f08c38e03
Size

771KB
Sample

231226-qaattagbc9
MD5

709dcabb900b41ba77ce778f08c38e03
SHA1

3c99abc7e37ee9d520a1cb41c7099410972e97ea
SHA256

12d36c9297fe362733d70e4507d782fc472f7c704dd6bea18171883a6bd19353
SHA512

6b598502c78a31cd2b59a5c956ff1db95a086d111c04858246ddd35aa44cae3eae57ce3d2ed03823e905182aa9032f42532f1c3f8f3a9b8bd6b7ed5fd60029c1
SSDEEP

12288:7bQ+r+DhFYV8Q2iQn9nAgjT+zPrQJT8/fDU9Ow/EBFo5YSxywWCrKoJOETbP/Ekx:PVaZ9GlQ6ttVb10hJaothZ2/T6FBBB

Score

7^/10

Malware Config

Targets

- Target
  
  709dcabb900b41ba77ce778f08c38e03
- Size
  
  771KB
- MD5
  
  709dcabb900b41ba77ce778f08c38e03
- SHA1
  
  3c99abc7e37ee9d520a1cb41c7099410972e97ea
- SHA256
  
  12d36c9297fe362733d70e4507d782fc472f7c704dd6bea18171883a6bd19353
- SHA512
  
  6b598502c78a31cd2b59a5c956ff1db95a086d111c04858246ddd35aa44cae3eae57ce3d2ed03823e905182aa9032f42532f1c3f8f3a9b8bd6b7ed5fd60029c1
- SSDEEP
  
  12288:7bQ+r+DhFYV8Q2iQn9nAgjT+zPrQJT8/fDU9Ow/EBFo5YSxywWCrKoJOETbP/Ekx:PVaZ9GlQ6ttVb10hJaothZ2/T6FBBB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2