b8bf6e078b3ec0cd58b245bc5fce17659fecfdbdff7d06785e35fd56e152451f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

114c3c99f20d9b2ef505a11ba328f355
Size

771KB
Sample

231230-hf4p3sgbh4
MD5

114c3c99f20d9b2ef505a11ba328f355
SHA1

e471fa06d2e73d8053e8d4381190583b0cc8014f
SHA256

b8bf6e078b3ec0cd58b245bc5fce17659fecfdbdff7d06785e35fd56e152451f
SHA512

a5ce6a62d83347959b7453a5e6d1e6257a26956b78e0ab2faffd39ebfff68af2790101fc76db626df33a28d7b584d3a709873d0941e119e3f2917e031e099285
SSDEEP

24576:QKjnoZpPfjAHBW2FzV8b10hJaothZ2/T6FBBB:vm1bAHJVW/ofT

Score

7^/10

Malware Config

Targets

- Target
  
  114c3c99f20d9b2ef505a11ba328f355
- Size
  
  771KB
- MD5
  
  114c3c99f20d9b2ef505a11ba328f355
- SHA1
  
  e471fa06d2e73d8053e8d4381190583b0cc8014f
- SHA256
  
  b8bf6e078b3ec0cd58b245bc5fce17659fecfdbdff7d06785e35fd56e152451f
- SHA512
  
  a5ce6a62d83347959b7453a5e6d1e6257a26956b78e0ab2faffd39ebfff68af2790101fc76db626df33a28d7b584d3a709873d0941e119e3f2917e031e099285
- SSDEEP
  
  24576:QKjnoZpPfjAHBW2FzV8b10hJaothZ2/T6FBBB:vm1bAHJVW/ofT
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2