05f895532e66411cc713f5a7f5932034b8c5b045360681acd14bdd1e6672cad6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

105dc980c11a6d5d7be09c5354ec8f79
Size

385KB
Sample

231230-ghkjjsadd2
MD5

105dc980c11a6d5d7be09c5354ec8f79
SHA1

4ea60ca3b59b6d08ad97dc27487caa3cdd759555
SHA256

05f895532e66411cc713f5a7f5932034b8c5b045360681acd14bdd1e6672cad6
SHA512

6a51311bb8443e7bf58b3a1b53d5d05c5b59b04ef933817bcc6fdb934f0c9db6cfedf478312b6404d38a8c67f989a2657536443b265f59a36ce3cbe1b85ddda1
SSDEEP

6144:E9JP8hMbCjkoQ+9rlSi8pFFV+AcjivSprlfIkdULhhvT/TINyT3B:E9JzCuY8pfV+TfprlgkCvvTrINyTB

Score

7^/10

Malware Config

Targets

- Target
  
  105dc980c11a6d5d7be09c5354ec8f79
- Size
  
  385KB
- MD5
  
  105dc980c11a6d5d7be09c5354ec8f79
- SHA1
  
  4ea60ca3b59b6d08ad97dc27487caa3cdd759555
- SHA256
  
  05f895532e66411cc713f5a7f5932034b8c5b045360681acd14bdd1e6672cad6
- SHA512
  
  6a51311bb8443e7bf58b3a1b53d5d05c5b59b04ef933817bcc6fdb934f0c9db6cfedf478312b6404d38a8c67f989a2657536443b265f59a36ce3cbe1b85ddda1
- SSDEEP
  
  6144:E9JP8hMbCjkoQ+9rlSi8pFFV+AcjivSprlfIkdULhhvT/TINyT3B:E9JzCuY8pfV+TfprlgkCvvTrINyTB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2