29094a04d9589e01ff07272f774bbb8ad568e846f8cfff078834453e4d8feeba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa8a7984f5143aac8950f0149c07a984
Size

385KB
Sample

231228-1pdt5abahp
MD5

fa8a7984f5143aac8950f0149c07a984
SHA1

fbe837b7c23280fb5e220d89b7c315eafe1dc481
SHA256

29094a04d9589e01ff07272f774bbb8ad568e846f8cfff078834453e4d8feeba
SHA512

b2195aaf58af95e2352ae97d81f70bcd05c5fd3929ff8b8ccc6ac05bc95d79bf34b9c3e50d7eca3a452908066ee4ccfd6adfe000632ec270545ee25baff38f0f
SSDEEP

12288:eBV4wDB2JiG8hG4nNylu39zkuI/Bpd5AB:86iG8hG4QlC6uI5aB

Score

7^/10

Malware Config

Targets

- Target
  
  fa8a7984f5143aac8950f0149c07a984
- Size
  
  385KB
- MD5
  
  fa8a7984f5143aac8950f0149c07a984
- SHA1
  
  fbe837b7c23280fb5e220d89b7c315eafe1dc481
- SHA256
  
  29094a04d9589e01ff07272f774bbb8ad568e846f8cfff078834453e4d8feeba
- SHA512
  
  b2195aaf58af95e2352ae97d81f70bcd05c5fd3929ff8b8ccc6ac05bc95d79bf34b9c3e50d7eca3a452908066ee4ccfd6adfe000632ec270545ee25baff38f0f
- SSDEEP
  
  12288:eBV4wDB2JiG8hG4nNylu39zkuI/Bpd5AB:86iG8hG4QlC6uI5aB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2