31211fc6d68fbc2b13fca93bc961d9305f3a63fb520e45b6e8824b516f4f4be4 | Triage

Sharing

General

Target

4aebceb6a012a650d0df5f6d57743074
Size

385KB
Sample

240108-j78nsaebhl
MD5

4aebceb6a012a650d0df5f6d57743074
SHA1

f474410dc3ddd263eb2f9b4a9b2fee14d8baab7b
SHA256

31211fc6d68fbc2b13fca93bc961d9305f3a63fb520e45b6e8824b516f4f4be4
SHA512

de1590abd7bd1cd425cbee7c9f047097dbd920b73ffca7169c5043b0c58099d13ad2b4d51cd1be4b803e4ea51d060a91530ee888bf6c69fec6620927c6dd288f
SSDEEP

12288:dnua7gB8iu/SJyHjs38kblvJm28fO+ZKyB:dnua7H/SJygLblvo2SO+ZKyB

Score

7^/10

Malware Config

Targets

- Target
  
  4aebceb6a012a650d0df5f6d57743074
- Size
  
  385KB
- MD5
  
  4aebceb6a012a650d0df5f6d57743074
- SHA1
  
  f474410dc3ddd263eb2f9b4a9b2fee14d8baab7b
- SHA256
  
  31211fc6d68fbc2b13fca93bc961d9305f3a63fb520e45b6e8824b516f4f4be4
- SHA512
  
  de1590abd7bd1cd425cbee7c9f047097dbd920b73ffca7169c5043b0c58099d13ad2b4d51cd1be4b803e4ea51d060a91530ee888bf6c69fec6620927c6dd288f
- SSDEEP
  
  12288:dnua7gB8iu/SJyHjs38kblvJm28fO+ZKyB:dnua7H/SJygLblvo2SO+ZKyB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2