3b2574466be1efefc6bff8a871ec3ce53e35d1ecb0fb4981525be44c98558296 | Triage

Sharing

General

Target

2aa3fda62e049ce74d516a88a4616b90
Size

385KB
Sample

231231-gh5vgsbcd7
MD5

2aa3fda62e049ce74d516a88a4616b90
SHA1

81e8625d261d60486aa95e1b72ec77d40a0787f4
SHA256

3b2574466be1efefc6bff8a871ec3ce53e35d1ecb0fb4981525be44c98558296
SHA512

1628c8ff345f4a46dd9efe75e9e02a3878ad00fb6e05e5fc54b47d5bfb830eb846ddaee7df671771fd6d28b47cc2c29c76e1b7a416e5bcee00b3399e3223bf72
SSDEEP

12288:VjO/VgqjcPllVjXjSEIq4FimeyhdNJQXFDPXhKTB:ICqjQjXjSEy4mfJKD/hgB

Score

7^/10

Malware Config

Targets

- Target
  
  2aa3fda62e049ce74d516a88a4616b90
- Size
  
  385KB
- MD5
  
  2aa3fda62e049ce74d516a88a4616b90
- SHA1
  
  81e8625d261d60486aa95e1b72ec77d40a0787f4
- SHA256
  
  3b2574466be1efefc6bff8a871ec3ce53e35d1ecb0fb4981525be44c98558296
- SHA512
  
  1628c8ff345f4a46dd9efe75e9e02a3878ad00fb6e05e5fc54b47d5bfb830eb846ddaee7df671771fd6d28b47cc2c29c76e1b7a416e5bcee00b3399e3223bf72
- SSDEEP
  
  12288:VjO/VgqjcPllVjXjSEIq4FimeyhdNJQXFDPXhKTB:ICqjQjXjSEy4mfJKD/hgB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2