5d0cf221808309858ffcb9595b3fd9791d66c012b65438b2615d31b962d8120e | Triage

Sharing

General

Target

4271e0db6d02b5445fd2171f1193a273
Size

771KB
Sample

240105-b4zygaged2
MD5

4271e0db6d02b5445fd2171f1193a273
SHA1

b53b69b335a9daffd0aa4ad3abb9c53661072cb4
SHA256

5d0cf221808309858ffcb9595b3fd9791d66c012b65438b2615d31b962d8120e
SHA512

4f9134cfa2ae8967b46ed496b41e02f100e83ea596e94fd9bc9b426cda530dc71f153621f8f0c531b1546247069bc853f53ca92e8e41291c79326a92a2c1d983
SSDEEP

12288:mcWQlL5JSFKfxAwkzl3ijwDK0NS8zb10VHmDXTuFaa2AtyGTKOF25ZoJJyhRge8V:TWSJM0Awc9e8zb10hJaothZ2/T6FBBB

Score

7^/10

Malware Config

Targets

- Target
  
  4271e0db6d02b5445fd2171f1193a273
- Size
  
  771KB
- MD5
  
  4271e0db6d02b5445fd2171f1193a273
- SHA1
  
  b53b69b335a9daffd0aa4ad3abb9c53661072cb4
- SHA256
  
  5d0cf221808309858ffcb9595b3fd9791d66c012b65438b2615d31b962d8120e
- SHA512
  
  4f9134cfa2ae8967b46ed496b41e02f100e83ea596e94fd9bc9b426cda530dc71f153621f8f0c531b1546247069bc853f53ca92e8e41291c79326a92a2c1d983
- SSDEEP
  
  12288:mcWQlL5JSFKfxAwkzl3ijwDK0NS8zb10VHmDXTuFaa2AtyGTKOF25ZoJJyhRge8V:TWSJM0Awc9e8zb10hJaothZ2/T6FBBB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2