27e75adf084438d896b724f1aebfe911ac90b49df278d2f7c8446ac8ebf632fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0033ee43d74b2e3c1944c50f9641f4d8
Size

385KB
Sample

231229-wv61msgcfp
MD5

0033ee43d74b2e3c1944c50f9641f4d8
SHA1

01c415a0e3d59bcc7d8f065f8060e0bca9fe050a
SHA256

27e75adf084438d896b724f1aebfe911ac90b49df278d2f7c8446ac8ebf632fc
SHA512

293d9acf6f7dde7f1035debc6e6b02756d4ddcc241484edc8304fe1f4e433ba87bb8c3983711dd73d21d2143b82d16682caf2f141e01bf3bf63556a1f09b601a
SSDEEP

12288:HMVe5LDBowS8BNSneztPJysgFyDw7Pf3i8B:qetDBJXvDyeDwzfi8B

Score

7^/10

Malware Config

Targets

- Target
  
  0033ee43d74b2e3c1944c50f9641f4d8
- Size
  
  385KB
- MD5
  
  0033ee43d74b2e3c1944c50f9641f4d8
- SHA1
  
  01c415a0e3d59bcc7d8f065f8060e0bca9fe050a
- SHA256
  
  27e75adf084438d896b724f1aebfe911ac90b49df278d2f7c8446ac8ebf632fc
- SHA512
  
  293d9acf6f7dde7f1035debc6e6b02756d4ddcc241484edc8304fe1f4e433ba87bb8c3983711dd73d21d2143b82d16682caf2f141e01bf3bf63556a1f09b601a
- SSDEEP
  
  12288:HMVe5LDBowS8BNSneztPJysgFyDw7Pf3i8B:qetDBJXvDyeDwzfi8B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2