bcf2f30e62c5144aa402b0b662caf61777c37fc0bbe458517fdc775706b37041 | Triage

Sharing

General

Target

39f647b46b0a6e4f91efb19f122fb985
Size

385KB
Sample

231231-rwz69shea9
MD5

39f647b46b0a6e4f91efb19f122fb985
SHA1

82bb30ce1ae0c04c17c421bda870c0971d532e39
SHA256

bcf2f30e62c5144aa402b0b662caf61777c37fc0bbe458517fdc775706b37041
SHA512

b5345d8c2e5ba83a30c3e6d22d268e6994bdcfc6e54d5e0571e187d878c6378394022fadb40e88292b0a092ca8778afad1d41e7f0d90c6d3ce1fed60107be6e7
SSDEEP

12288:ZWRbjyKQ9ll+lOGGLtjfs8ZIG8bS4SlzyTgB:ZWRbUll7GoxfnZUslSgB

Score

7^/10

Malware Config

Targets

- Target
  
  39f647b46b0a6e4f91efb19f122fb985
- Size
  
  385KB
- MD5
  
  39f647b46b0a6e4f91efb19f122fb985
- SHA1
  
  82bb30ce1ae0c04c17c421bda870c0971d532e39
- SHA256
  
  bcf2f30e62c5144aa402b0b662caf61777c37fc0bbe458517fdc775706b37041
- SHA512
  
  b5345d8c2e5ba83a30c3e6d22d268e6994bdcfc6e54d5e0571e187d878c6378394022fadb40e88292b0a092ca8778afad1d41e7f0d90c6d3ce1fed60107be6e7
- SSDEEP
  
  12288:ZWRbjyKQ9ll+lOGGLtjfs8ZIG8bS4SlzyTgB:ZWRbUll7GoxfnZUslSgB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2