1a6d383928a3b6552a4c12369e26cbab30467be22583a33a0678a845e1b2086a | Triage

Sharing

General

Target

2085ad2ab5c83816c88ceb524b6ae8b2
Size

385KB
Sample

231230-3sraqshgb3
MD5

2085ad2ab5c83816c88ceb524b6ae8b2
SHA1

8885b2df1d60871077802ed9cc13b512aabafe0e
SHA256

1a6d383928a3b6552a4c12369e26cbab30467be22583a33a0678a845e1b2086a
SHA512

afb1c55e379c160a961c1c806b9b9c74950fb655f5ef402f3dca970ed5389c5f1b1e0917578274c4fe5d5843ba3b0123d93aded80bf69d811b91aa7bec8189b2
SSDEEP

6144:HtOLrzeZpS+DSoPPMmft/yvN+8rcmDwxrITv+cUe7bkB:NKPcS+DSo9yv1QmyrO+cUe7bkB

Score

7^/10

Malware Config

Targets

- Target
  
  2085ad2ab5c83816c88ceb524b6ae8b2
- Size
  
  385KB
- MD5
  
  2085ad2ab5c83816c88ceb524b6ae8b2
- SHA1
  
  8885b2df1d60871077802ed9cc13b512aabafe0e
- SHA256
  
  1a6d383928a3b6552a4c12369e26cbab30467be22583a33a0678a845e1b2086a
- SHA512
  
  afb1c55e379c160a961c1c806b9b9c74950fb655f5ef402f3dca970ed5389c5f1b1e0917578274c4fe5d5843ba3b0123d93aded80bf69d811b91aa7bec8189b2
- SSDEEP
  
  6144:HtOLrzeZpS+DSoPPMmft/yvN+8rcmDwxrITv+cUe7bkB:NKPcS+DSo9yv1QmyrO+cUe7bkB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2