1bd55a1f5fc86e5690b7dfcfee6a877dddb9f9892cf5f7bb6841dfd64eda9e74 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25e1ce44e81b47f441029b3b8849b61f
Size

418KB
Sample

231231-dppkasfaam
MD5

25e1ce44e81b47f441029b3b8849b61f
SHA1

9ecfcd783a0242251f6eeebcd3a43ad92a63fe1f
SHA256

1bd55a1f5fc86e5690b7dfcfee6a877dddb9f9892cf5f7bb6841dfd64eda9e74
SHA512

29d8935b770d4f3102434278b2cf7f56f1a3ae6b72288fcd74fd2b09d7f0b3b4ff2f6b17a741ab2a601165c86c69a71db99e835e31cf6193e2ec035cd0ba2009
SSDEEP

12288:UJ1BIyL8J/vvFVtcOOc3G/NdWxCS3G4EnaT9jgiy:ULk/ZSWxCS24EnaTJg

Score

7^/10

Malware Config

Targets

- Target
  
  25e1ce44e81b47f441029b3b8849b61f
- Size
  
  418KB
- MD5
  
  25e1ce44e81b47f441029b3b8849b61f
- SHA1
  
  9ecfcd783a0242251f6eeebcd3a43ad92a63fe1f
- SHA256
  
  1bd55a1f5fc86e5690b7dfcfee6a877dddb9f9892cf5f7bb6841dfd64eda9e74
- SHA512
  
  29d8935b770d4f3102434278b2cf7f56f1a3ae6b72288fcd74fd2b09d7f0b3b4ff2f6b17a741ab2a601165c86c69a71db99e835e31cf6193e2ec035cd0ba2009
- SSDEEP
  
  12288:UJ1BIyL8J/vvFVtcOOc3G/NdWxCS3G4EnaT9jgiy:ULk/ZSWxCS24EnaTJg
Score

7^/10
- Drops startup file
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2