2970baebe2ab4bc222d8fb4c7b62ebac25db2df9df34c5053f39a0200215578c | Triage

Sharing

General

Target

1aaf9a26bba5f2269f152d963c06b978
Size

385KB
Sample

231230-q7v61schgj
MD5

1aaf9a26bba5f2269f152d963c06b978
SHA1

b9c81cb83e3f2dbcf9ad93aacd7e822330397bd2
SHA256

2970baebe2ab4bc222d8fb4c7b62ebac25db2df9df34c5053f39a0200215578c
SHA512

4ecc345329eb21e1cdb0a45a3edddcdd641d5ff201a03ed0d207410fdbbc5e9ac8ad4043e90a620f739c5b13fd95e779e8e00b3a9f6d2090b705a719f9e87d91
SSDEEP

6144:h/5eNiDo6BGWpJTwlgOKeZ2lyyJPpuelov9aLHoXFC89t5RVB/v3N2KH0wjBmswy:hIMoUppJ0lgNy2ro4cFC63XEKHuni/7B

Score

7^/10

Malware Config

Targets

- Target
  
  1aaf9a26bba5f2269f152d963c06b978
- Size
  
  385KB
- MD5
  
  1aaf9a26bba5f2269f152d963c06b978
- SHA1
  
  b9c81cb83e3f2dbcf9ad93aacd7e822330397bd2
- SHA256
  
  2970baebe2ab4bc222d8fb4c7b62ebac25db2df9df34c5053f39a0200215578c
- SHA512
  
  4ecc345329eb21e1cdb0a45a3edddcdd641d5ff201a03ed0d207410fdbbc5e9ac8ad4043e90a620f739c5b13fd95e779e8e00b3a9f6d2090b705a719f9e87d91
- SSDEEP
  
  6144:h/5eNiDo6BGWpJTwlgOKeZ2lyyJPpuelov9aLHoXFC89t5RVB/v3N2KH0wjBmswy:hIMoUppJ0lgNy2ro4cFC63XEKHuni/7B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2