793e659ad266c3b0475fbd86cc2a7925932736b27e48425975c38aa83866a376 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b64ea0d95ab9f18e502ed274a17f8e6
Size

385KB
Sample

231230-rseq6aghhn
MD5

1b64ea0d95ab9f18e502ed274a17f8e6
SHA1

6414c61f63c92551b94b0fd888b522d1678c789a
SHA256

793e659ad266c3b0475fbd86cc2a7925932736b27e48425975c38aa83866a376
SHA512

6aa07f3709d3da380185a1cfd264c33e2124e91b5128d9ca625b392f723c3fc1656a568fa645e15f236abdf028cc4b038a353c514c3aaa494368e0eb6dfc77e1
SSDEEP

6144:5K5V+JyCJoB2C/HLxaLrdAHQ+80ILM58nNGAd02Zn/lmJwdtgbY1sxQ3M9yXKUzs:mgGB2uLsFwKRNJm2pdtgssFTUzXSjCwB

Score

7^/10

Malware Config

Targets

- Target
  
  1b64ea0d95ab9f18e502ed274a17f8e6
- Size
  
  385KB
- MD5
  
  1b64ea0d95ab9f18e502ed274a17f8e6
- SHA1
  
  6414c61f63c92551b94b0fd888b522d1678c789a
- SHA256
  
  793e659ad266c3b0475fbd86cc2a7925932736b27e48425975c38aa83866a376
- SHA512
  
  6aa07f3709d3da380185a1cfd264c33e2124e91b5128d9ca625b392f723c3fc1656a568fa645e15f236abdf028cc4b038a353c514c3aaa494368e0eb6dfc77e1
- SSDEEP
  
  6144:5K5V+JyCJoB2C/HLxaLrdAHQ+80ILM58nNGAd02Zn/lmJwdtgbY1sxQ3M9yXKUzs:mgGB2uLsFwKRNJm2pdtgssFTUzXSjCwB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2