66e92baf8dd8c64fbffe1353b713d2b9b0d5986d66caada66f65379889510104 | Triage

Sharing

General

Target

16bcc082eda1c8221b791a4d47f31758
Size

418KB
Sample

231230-m7bwlaeecr
MD5

16bcc082eda1c8221b791a4d47f31758
SHA1

c818ab18b034652a086a80b32f7cb430fa934acd
SHA256

66e92baf8dd8c64fbffe1353b713d2b9b0d5986d66caada66f65379889510104
SHA512

f2db83f51e6fcba8c43770e326cf2aa429e169e67d879c163998264b709c9d39743951875968bbdcf227a774a7896e1f063f38303de57ccb60ea3c2ac809a08a
SSDEEP

12288:UJ1BIyL8J/vvFVtcOOc3G/NdWxCS3G4EnaT9jgiy:ULk/ZSWxCS24EnaTJg

Score

7^/10

Malware Config

Targets

- Target
  
  16bcc082eda1c8221b791a4d47f31758
- Size
  
  418KB
- MD5
  
  16bcc082eda1c8221b791a4d47f31758
- SHA1
  
  c818ab18b034652a086a80b32f7cb430fa934acd
- SHA256
  
  66e92baf8dd8c64fbffe1353b713d2b9b0d5986d66caada66f65379889510104
- SHA512
  
  f2db83f51e6fcba8c43770e326cf2aa429e169e67d879c163998264b709c9d39743951875968bbdcf227a774a7896e1f063f38303de57ccb60ea3c2ac809a08a
- SSDEEP
  
  12288:UJ1BIyL8J/vvFVtcOOc3G/NdWxCS3G4EnaT9jgiy:ULk/ZSWxCS24EnaTJg
Score

7^/10
- Drops startup file
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2