69c78f29caa3cb6521343d73e57f2686d1bf680f3585d8188b1c2f9b22b504fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1c985c1c9ffc1a396b3240c95e2e8ed3
Size

771KB
Sample

231230-z2cbdscbe7
MD5

1c985c1c9ffc1a396b3240c95e2e8ed3
SHA1

d4bdf36c136742b652b79177dc0783f55fdc76d6
SHA256

69c78f29caa3cb6521343d73e57f2686d1bf680f3585d8188b1c2f9b22b504fc
SHA512

32ebb1d0bae3f214e17a7eef0ff3c9ca93dc86380d6d08e579a3e7b11a72a0587763de44bdc79e706a8bb38223a5115f09600cccb0ad744de6516dafae8d1224
SSDEEP

12288:p5ODH+EPPtu5o/qfxHx6vsi2/JS5gcKqQJ5b10VHmDXTuFaa2AtyGTKOF25ZoJJf:p52PDOxH0oqub10hJaothZ2/T6FBBB

Score

7^/10

Malware Config

Targets

- Target
  
  1c985c1c9ffc1a396b3240c95e2e8ed3
- Size
  
  771KB
- MD5
  
  1c985c1c9ffc1a396b3240c95e2e8ed3
- SHA1
  
  d4bdf36c136742b652b79177dc0783f55fdc76d6
- SHA256
  
  69c78f29caa3cb6521343d73e57f2686d1bf680f3585d8188b1c2f9b22b504fc
- SHA512
  
  32ebb1d0bae3f214e17a7eef0ff3c9ca93dc86380d6d08e579a3e7b11a72a0587763de44bdc79e706a8bb38223a5115f09600cccb0ad744de6516dafae8d1224
- SSDEEP
  
  12288:p5ODH+EPPtu5o/qfxHx6vsi2/JS5gcKqQJ5b10VHmDXTuFaa2AtyGTKOF25ZoJJf:p52PDOxH0oqub10hJaothZ2/T6FBBB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2