1b8c20b0a5e69765e68c548d2e3ef8000ecf925eff12efa07a8514e40c7a12a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

48fb3d1982bef037cb2ffeb72df170f1
Size

385KB
Sample

240107-pna63afebj
MD5

48fb3d1982bef037cb2ffeb72df170f1
SHA1

39c9ed5bee8f7a99e1ede5972e37a1a000e612f9
SHA256

1b8c20b0a5e69765e68c548d2e3ef8000ecf925eff12efa07a8514e40c7a12a5
SHA512

befe5377da25d9f600c77f43b9680bbd947fd5bfdd432cdc5c01da4d1924f91dd0a22a89f9584b6108a0cf81edcd89a5aca2f9029b21c5fada4cac5fcf6770eb
SSDEEP

6144:OIRljmsyiqEhzThWVe0ptWtzRKxDAc/aip+j11SzXkTjxK8JYSjFcqvB:OUlisMEhvwVqjKxDZ/atmYDAqvB

Score

7^/10

Malware Config

Targets

- Target
  
  48fb3d1982bef037cb2ffeb72df170f1
- Size
  
  385KB
- MD5
  
  48fb3d1982bef037cb2ffeb72df170f1
- SHA1
  
  39c9ed5bee8f7a99e1ede5972e37a1a000e612f9
- SHA256
  
  1b8c20b0a5e69765e68c548d2e3ef8000ecf925eff12efa07a8514e40c7a12a5
- SHA512
  
  befe5377da25d9f600c77f43b9680bbd947fd5bfdd432cdc5c01da4d1924f91dd0a22a89f9584b6108a0cf81edcd89a5aca2f9029b21c5fada4cac5fcf6770eb
- SSDEEP
  
  6144:OIRljmsyiqEhzThWVe0ptWtzRKxDAc/aip+j11SzXkTjxK8JYSjFcqvB:OUlisMEhvwVqjKxDZ/atmYDAqvB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2