639724948743b6be20f5c2e84d0abeb94a09f52782bb81b6dda2354ee49471d4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25b47bef50570c3be37a2e42680d1799
Size

385KB
Sample

231231-dlq9qaeafp
MD5

25b47bef50570c3be37a2e42680d1799
SHA1

25b422cf904059d29e584febae3b9a47c4d20f04
SHA256

639724948743b6be20f5c2e84d0abeb94a09f52782bb81b6dda2354ee49471d4
SHA512

9bd26a92180afa609b0ed0ca4af5d8a44b62eff0b937e3ac687f3967f9766e6ceff8ede6a2793e97efcbf75ebdc566048e236283fa42c80b691526450f5c95d2
SSDEEP

12288:ARbhZLNQgFy96+9+163+ZjlqqwCSmbYDvPZM3B0uqd5B:AZLNRFY6+9+16O1lqqtbYDvxM3iuW5B

Score

7^/10

Malware Config

Targets

- Target
  
  25b47bef50570c3be37a2e42680d1799
- Size
  
  385KB
- MD5
  
  25b47bef50570c3be37a2e42680d1799
- SHA1
  
  25b422cf904059d29e584febae3b9a47c4d20f04
- SHA256
  
  639724948743b6be20f5c2e84d0abeb94a09f52782bb81b6dda2354ee49471d4
- SHA512
  
  9bd26a92180afa609b0ed0ca4af5d8a44b62eff0b937e3ac687f3967f9766e6ceff8ede6a2793e97efcbf75ebdc566048e236283fa42c80b691526450f5c95d2
- SSDEEP
  
  12288:ARbhZLNQgFy96+9+163+ZjlqqwCSmbYDvPZM3B0uqd5B:AZLNRFY6+9+16O1lqqtbYDvxM3iuW5B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2