fd0eb62914c40c982367337f70d5db473ce1c97d8b6e73877e32dc54c807098c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0bce22f41ffb7b71ab1dad6621c92e08
Size

385KB
Sample

231230-c18xmsffd7
MD5

0bce22f41ffb7b71ab1dad6621c92e08
SHA1

c11f52179009ac592ccc1c797d4ec22fcdbe8b39
SHA256

fd0eb62914c40c982367337f70d5db473ce1c97d8b6e73877e32dc54c807098c
SHA512

8803760653fd197f413ced20fd76c0165ff13085cb4833dc9050af5ba95369d07f2c0c68d780b3b6ae80c0df308e24f97ac8ee79635bed0b9cd0c41b63877e48
SSDEEP

12288:4yTfByCzY5VWgCMPDheSuSSPjB271VadSjqB/B:4kfP2vJhhXejB27TadSmtB

Score

7^/10

Malware Config

Targets

- Target
  
  0bce22f41ffb7b71ab1dad6621c92e08
- Size
  
  385KB
- MD5
  
  0bce22f41ffb7b71ab1dad6621c92e08
- SHA1
  
  c11f52179009ac592ccc1c797d4ec22fcdbe8b39
- SHA256
  
  fd0eb62914c40c982367337f70d5db473ce1c97d8b6e73877e32dc54c807098c
- SHA512
  
  8803760653fd197f413ced20fd76c0165ff13085cb4833dc9050af5ba95369d07f2c0c68d780b3b6ae80c0df308e24f97ac8ee79635bed0b9cd0c41b63877e48
- SSDEEP
  
  12288:4yTfByCzY5VWgCMPDheSuSSPjB271VadSjqB/B:4kfP2vJhhXejB27TadSmtB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2