be70c6f31542bc759f20da3135ede6c01af60ec2b8de76458ecde51fd6d4476e | Triage

Sharing

General

Target

20265bcd2958e487f37e42678876ac8b
Size

385KB
Sample

231230-3kaysafgc2
MD5

20265bcd2958e487f37e42678876ac8b
SHA1

a502b49bdc7fb77a6774c1cab9f00089e8b40f36
SHA256

be70c6f31542bc759f20da3135ede6c01af60ec2b8de76458ecde51fd6d4476e
SHA512

967cba6caeee0de70ae4bdccc0f41c1d1b651d8427c22e7e756ddc9c66e482ca906688da7c4cbc987bcb167c27438d240dd49ae5a29ef4e3ff4f134333faa025
SSDEEP

12288:JRwj5J2tp/oYMmudpV1+zZ993/Xix8pdxTpmrB:mRmu/+z1vX1pdxTpmrB

Score

7^/10

Malware Config

Targets

- Target
  
  20265bcd2958e487f37e42678876ac8b
- Size
  
  385KB
- MD5
  
  20265bcd2958e487f37e42678876ac8b
- SHA1
  
  a502b49bdc7fb77a6774c1cab9f00089e8b40f36
- SHA256
  
  be70c6f31542bc759f20da3135ede6c01af60ec2b8de76458ecde51fd6d4476e
- SHA512
  
  967cba6caeee0de70ae4bdccc0f41c1d1b651d8427c22e7e756ddc9c66e482ca906688da7c4cbc987bcb167c27438d240dd49ae5a29ef4e3ff4f134333faa025
- SSDEEP
  
  12288:JRwj5J2tp/oYMmudpV1+zZ993/Xix8pdxTpmrB:mRmu/+z1vX1pdxTpmrB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2