5c7054581667ee9dd7bccf3ccf693dcfac1718cc606f30e71f944c7147834e48 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c99bd1b5cb770200728bcecd28934c2
Size

385KB
Sample

240108-1853qadebk
MD5

4c99bd1b5cb770200728bcecd28934c2
SHA1

38578037e7edd548377b1c4fde8c2c731cfd0c63
SHA256

5c7054581667ee9dd7bccf3ccf693dcfac1718cc606f30e71f944c7147834e48
SHA512

8bf280271140aea12b90339f533b51850d7a7937dc3f66f7b05a0f1f96d7ecaf63d1fd8babc79bccd8435c3e907262bad9f195f5aeeeb9b9dc7c1bdfe196cf1e
SSDEEP

12288:Nbg0mlCH/WQLpkgw85fxtw7dHtThsr1+zRB:6AH/WMPfxy93A+B

Score

7^/10

Malware Config

Targets

- Target
  
  4c99bd1b5cb770200728bcecd28934c2
- Size
  
  385KB
- MD5
  
  4c99bd1b5cb770200728bcecd28934c2
- SHA1
  
  38578037e7edd548377b1c4fde8c2c731cfd0c63
- SHA256
  
  5c7054581667ee9dd7bccf3ccf693dcfac1718cc606f30e71f944c7147834e48
- SHA512
  
  8bf280271140aea12b90339f533b51850d7a7937dc3f66f7b05a0f1f96d7ecaf63d1fd8babc79bccd8435c3e907262bad9f195f5aeeeb9b9dc7c1bdfe196cf1e
- SSDEEP
  
  12288:Nbg0mlCH/WQLpkgw85fxtw7dHtThsr1+zRB:6AH/WMPfxy93A+B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2