feff89f0b5dce4d1a1430e791b226b9804bfdf99e8e76cd0baf332d222bd0eb5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4397f5b38b2e1ed6dd88d752370e3f72
Size

385KB
Sample

240105-ns5e2aafgr
MD5

4397f5b38b2e1ed6dd88d752370e3f72
SHA1

fa597de42899e9bc33f677c396a2e6c14ff5d0de
SHA256

feff89f0b5dce4d1a1430e791b226b9804bfdf99e8e76cd0baf332d222bd0eb5
SHA512

db2ff8d5df84920293c7d92f4c86da4ce7836ee6e9e00d27ddb30c4015629f4d26bd8e6f2e31912735f15284ee5bf8c724f092b638d193be78ea2a8af69bfaaf
SSDEEP

6144:BdLhWqAnoftKo7F1lHYPfXN87uoWpbFgxMaahe1dH0TTzJeV5WnCcaMB:LdWqNPKPPW+0KherV5ihB

Score

7^/10

Malware Config

Targets

- Target
  
  4397f5b38b2e1ed6dd88d752370e3f72
- Size
  
  385KB
- MD5
  
  4397f5b38b2e1ed6dd88d752370e3f72
- SHA1
  
  fa597de42899e9bc33f677c396a2e6c14ff5d0de
- SHA256
  
  feff89f0b5dce4d1a1430e791b226b9804bfdf99e8e76cd0baf332d222bd0eb5
- SHA512
  
  db2ff8d5df84920293c7d92f4c86da4ce7836ee6e9e00d27ddb30c4015629f4d26bd8e6f2e31912735f15284ee5bf8c724f092b638d193be78ea2a8af69bfaaf
- SSDEEP
  
  6144:BdLhWqAnoftKo7F1lHYPfXN87uoWpbFgxMaahe1dH0TTzJeV5WnCcaMB:LdWqNPKPPW+0KherV5ihB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2