6e0b3adc37a295bb14a836f102f99abe5517afbb3e25ad92edc96341a7c43b8b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0fe86ceffbd44fd4ad452dddf2ed46b1
Size

385KB
Sample

231230-f23zkaffc5
MD5

0fe86ceffbd44fd4ad452dddf2ed46b1
SHA1

5e5a9908a32b36c5a653bece2b64c0653c635d19
SHA256

6e0b3adc37a295bb14a836f102f99abe5517afbb3e25ad92edc96341a7c43b8b
SHA512

d93e7c9e2fa67d4dbcf74a7b9a8955de5d48e3d038f0b7dc1cf9d7bd3b7ce23719eb123d19d3d7d8b006ded2f7b9e3d2613fb548724c8da7da306b5fa9b5591b
SSDEEP

12288:/FtsCF8Wy4p6ECq01x/Ox7DQB6z2vUtHiyB:/rsEPYfqhI6z2vWHiyB

Score

7^/10

Malware Config

Targets

- Target
  
  0fe86ceffbd44fd4ad452dddf2ed46b1
- Size
  
  385KB
- MD5
  
  0fe86ceffbd44fd4ad452dddf2ed46b1
- SHA1
  
  5e5a9908a32b36c5a653bece2b64c0653c635d19
- SHA256
  
  6e0b3adc37a295bb14a836f102f99abe5517afbb3e25ad92edc96341a7c43b8b
- SHA512
  
  d93e7c9e2fa67d4dbcf74a7b9a8955de5d48e3d038f0b7dc1cf9d7bd3b7ce23719eb123d19d3d7d8b006ded2f7b9e3d2613fb548724c8da7da306b5fa9b5591b
- SSDEEP
  
  12288:/FtsCF8Wy4p6ECq01x/Ox7DQB6z2vUtHiyB:/rsEPYfqhI6z2vWHiyB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2