81980677d5899b1229417a23fc002ef7f2cf1ea9f0d3788e0368e3104d8a3e29 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22597a63f41ed1ee48be6e38596a8312
Size

385KB
Sample

231231-bajz6acdb8
MD5

22597a63f41ed1ee48be6e38596a8312
SHA1

394c25b8bbe0895f082f8c445b1b840f8c47113a
SHA256

81980677d5899b1229417a23fc002ef7f2cf1ea9f0d3788e0368e3104d8a3e29
SHA512

d4f3d27611c5f70f9e42d0bd4c56eb29e20c9fffec5377799df48a770edebebe068bfbf22b3e3ce103a17d5cd96b79f3df1cb1334051e42c7ccdf27b3c40e68e
SSDEEP

6144:GJNEq4kAz5jDt64kqM+TIUOK3KEDHHBduqtrU7u5ah3fnXfMq2Sxu2+htDQgDB:GTEqfijhBkUWK3KETHvuJfXEAqt8eB

Score

7^/10

Malware Config

Targets

- Target
  
  22597a63f41ed1ee48be6e38596a8312
- Size
  
  385KB
- MD5
  
  22597a63f41ed1ee48be6e38596a8312
- SHA1
  
  394c25b8bbe0895f082f8c445b1b840f8c47113a
- SHA256
  
  81980677d5899b1229417a23fc002ef7f2cf1ea9f0d3788e0368e3104d8a3e29
- SHA512
  
  d4f3d27611c5f70f9e42d0bd4c56eb29e20c9fffec5377799df48a770edebebe068bfbf22b3e3ce103a17d5cd96b79f3df1cb1334051e42c7ccdf27b3c40e68e
- SSDEEP
  
  6144:GJNEq4kAz5jDt64kqM+TIUOK3KEDHHBduqtrU7u5ah3fnXfMq2Sxu2+htDQgDB:GTEqfijhBkUWK3KETHvuJfXEAqt8eB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2