a4fb720adca7be7049a9a85f769775d6f0eb143ffb1c3b8285a82df273cf1ada | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71d50968774332cc6657985a9f64e152
Size

907KB
Sample

231226-qk7arsaah4
MD5

71d50968774332cc6657985a9f64e152
SHA1

4f533fd7cc9b5ae330ed7a33323246fd57f4de71
SHA256

a4fb720adca7be7049a9a85f769775d6f0eb143ffb1c3b8285a82df273cf1ada
SHA512

c1b816a36850c791dbf244cd5f9031ba100239485ca74bc9b9a5f65356a956ae0bb825ac737299fff0c5871bb1adcb677b6781a783ccf11f6da5642293ffdcb6
SSDEEP

12288:sOOqYJF9Vs+lOWcpu6RmnZW1KM+vHSCX+sQg+jVDa/ZS1:stqYVVs+YWcpu5nZUHYqAsa/ZS1

Score

7^/10

Malware Config

Targets

- Target
  
  71d50968774332cc6657985a9f64e152
- Size
  
  907KB
- MD5
  
  71d50968774332cc6657985a9f64e152
- SHA1
  
  4f533fd7cc9b5ae330ed7a33323246fd57f4de71
- SHA256
  
  a4fb720adca7be7049a9a85f769775d6f0eb143ffb1c3b8285a82df273cf1ada
- SHA512
  
  c1b816a36850c791dbf244cd5f9031ba100239485ca74bc9b9a5f65356a956ae0bb825ac737299fff0c5871bb1adcb677b6781a783ccf11f6da5642293ffdcb6
- SSDEEP
  
  12288:sOOqYJF9Vs+lOWcpu6RmnZW1KM+vHSCX+sQg+jVDa/ZS1:stqYVVs+YWcpu5nZUHYqAsa/ZS1
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2