827249fc3cca8be52611f42b9fe677a8bd0d300b399ee5e253f461d4445c67f5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36f93a58940c8466cf4869f8396ed7aa
Size

385KB
Sample

231231-p65hmafhe7
MD5

36f93a58940c8466cf4869f8396ed7aa
SHA1

d79d1a47920a9ea68e1881fb4236ae26a99d1886
SHA256

827249fc3cca8be52611f42b9fe677a8bd0d300b399ee5e253f461d4445c67f5
SHA512

ccbc5a569c55ae9efa86bd7dd67f3ad9aea7da7633c1b525f059301685611c92a28222c6e4d88a9b4161d737ec2512da50787238056ae7a6a6e974123278f6ad
SSDEEP

6144:zLoYovDtv9LJr8JIOAmFo546FG1jIg5MMTHuu9EsFuIGNeNRTETSS1DeGezhlB:+Ltv9LJmALFG1c+HDX3GQzETSgDJe9lB

Score

7^/10

Malware Config

Targets

- Target
  
  36f93a58940c8466cf4869f8396ed7aa
- Size
  
  385KB
- MD5
  
  36f93a58940c8466cf4869f8396ed7aa
- SHA1
  
  d79d1a47920a9ea68e1881fb4236ae26a99d1886
- SHA256
  
  827249fc3cca8be52611f42b9fe677a8bd0d300b399ee5e253f461d4445c67f5
- SHA512
  
  ccbc5a569c55ae9efa86bd7dd67f3ad9aea7da7633c1b525f059301685611c92a28222c6e4d88a9b4161d737ec2512da50787238056ae7a6a6e974123278f6ad
- SSDEEP
  
  6144:zLoYovDtv9LJr8JIOAmFo546FG1jIg5MMTHuu9EsFuIGNeNRTETSS1DeGezhlB:+Ltv9LJmALFG1c+HDX3GQzETSgDJe9lB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2