ad06fb8112ce07b658fe9d07e8d2c7a659aac97ead45c3b9c878a2e7253bf773 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4cf6fa57c0f3c239d1ec43528cb06c5f
Size

385KB
Sample

240109-bqbzgsabfn
MD5

4cf6fa57c0f3c239d1ec43528cb06c5f
SHA1

30bf72109fcea470debef2d820d26a0f493389ef
SHA256

ad06fb8112ce07b658fe9d07e8d2c7a659aac97ead45c3b9c878a2e7253bf773
SHA512

4b4baf4e494b85b86a6692c4df986e482a7cad8d2ef943e5498f6504ad41a30e5e98113c64c2f4a2a98c48a879f88a04a1cb924d4eea11168c16b9d5fb8c220c
SSDEEP

12288:M5QVp6do1xCl0I7W8tU9oRb78tOXERYEB:M8p6ijCl0b6dAtPYEB

Score

7^/10

Malware Config

Targets

- Target
  
  4cf6fa57c0f3c239d1ec43528cb06c5f
- Size
  
  385KB
- MD5
  
  4cf6fa57c0f3c239d1ec43528cb06c5f
- SHA1
  
  30bf72109fcea470debef2d820d26a0f493389ef
- SHA256
  
  ad06fb8112ce07b658fe9d07e8d2c7a659aac97ead45c3b9c878a2e7253bf773
- SHA512
  
  4b4baf4e494b85b86a6692c4df986e482a7cad8d2ef943e5498f6504ad41a30e5e98113c64c2f4a2a98c48a879f88a04a1cb924d4eea11168c16b9d5fb8c220c
- SSDEEP
  
  12288:M5QVp6do1xCl0I7W8tU9oRb78tOXERYEB:M8p6ijCl0b6dAtPYEB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2