c09164dd2eb417fb38dbc2f754f15385dc4191b86ac502b9f6c11a5b13b84696 | Triage

Sharing

General

Target

419011f4e0e4e2eaf1351a50702e769a
Size

385KB
Sample

240104-wrb14agcgq
MD5

419011f4e0e4e2eaf1351a50702e769a
SHA1

3b437cc7a394fb09d6f2463a3710045310258ba8
SHA256

c09164dd2eb417fb38dbc2f754f15385dc4191b86ac502b9f6c11a5b13b84696
SHA512

9fd39a7e91ae60d88eabfea214fedf155cfefe8b50727b0a169c42e95f26fdaae0ea1d63cd2fc1a0976c661af1ec96236d6e31a88005721c8e123ef723db19e6
SSDEEP

6144:/zhPi5C31VOKtttU31Dq145tR6RVDaL1RW1tcXrIB5CCPx624np+iftnwB:VPWC31Ptm1B96RpSRW7cXY5awimB

Score

7^/10

Malware Config

Targets

- Target
  
  419011f4e0e4e2eaf1351a50702e769a
- Size
  
  385KB
- MD5
  
  419011f4e0e4e2eaf1351a50702e769a
- SHA1
  
  3b437cc7a394fb09d6f2463a3710045310258ba8
- SHA256
  
  c09164dd2eb417fb38dbc2f754f15385dc4191b86ac502b9f6c11a5b13b84696
- SHA512
  
  9fd39a7e91ae60d88eabfea214fedf155cfefe8b50727b0a169c42e95f26fdaae0ea1d63cd2fc1a0976c661af1ec96236d6e31a88005721c8e123ef723db19e6
- SSDEEP
  
  6144:/zhPi5C31VOKtttU31Dq145tR6RVDaL1RW1tcXrIB5CCPx624np+iftnwB:VPWC31Ptm1B96RpSRW7cXY5awimB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2