81096bbb61ae465bb1aed840adfa7ec6f8dc2325d68c9a660d99e16417c0a23a | Triage

Sharing

General

Target

0a70dcdb743feaa73a1934d1980bc0e0
Size

385KB
Sample

231230-b4vczscfak
MD5

0a70dcdb743feaa73a1934d1980bc0e0
SHA1

ab75d39d219a6a8df5b6d26ab52c739ee17815a6
SHA256

81096bbb61ae465bb1aed840adfa7ec6f8dc2325d68c9a660d99e16417c0a23a
SHA512

a2bbbc28137f4c06cb64b9a3fd8175cb2c7db34dc0cd854b49547bf2ccbf50782f3f7e223e7a230d9422c685ce6fb75bcfca1744e72496a180740feb80dfb4aa
SSDEEP

6144:cpzN5dD1p4NOy6YdQ2KGctFfzF8wGGeWWGsDoqaRms03Phme/Q/JUw5+y63yiuB:yzWNvMGcfleCpqPs03JmyQS4+y63/uB

Score

7^/10

Malware Config

Targets

- Target
  
  0a70dcdb743feaa73a1934d1980bc0e0
- Size
  
  385KB
- MD5
  
  0a70dcdb743feaa73a1934d1980bc0e0
- SHA1
  
  ab75d39d219a6a8df5b6d26ab52c739ee17815a6
- SHA256
  
  81096bbb61ae465bb1aed840adfa7ec6f8dc2325d68c9a660d99e16417c0a23a
- SHA512
  
  a2bbbc28137f4c06cb64b9a3fd8175cb2c7db34dc0cd854b49547bf2ccbf50782f3f7e223e7a230d9422c685ce6fb75bcfca1744e72496a180740feb80dfb4aa
- SSDEEP
  
  6144:cpzN5dD1p4NOy6YdQ2KGctFfzF8wGGeWWGsDoqaRms03Phme/Q/JUw5+y63yiuB:yzWNvMGcfleCpqPs03JmyQS4+y63/uB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2