e29aa2156031ce038588fbd9282fb0a2ce839b9942abf91b577446332cbf2b93 | Triage

Sharing

General

Target

4d2ebb1bee548aa98b902e032d643390
Size

385KB
Sample

240109-dnqqzadchl
MD5

4d2ebb1bee548aa98b902e032d643390
SHA1

80ce5fcb9812f88eb32346b86f6806a90dfb2fce
SHA256

e29aa2156031ce038588fbd9282fb0a2ce839b9942abf91b577446332cbf2b93
SHA512

ba3d42562cb2d258ecf963b4a539b6ceea955696513ee7b2b1529f7df1a9cca69dc1056902e4f23ea7144acc873a2b9bc4c7d42f041bf30c6934138d7db41325
SSDEEP

12288:H9zxiveq9qN60kG3oUnT1ds05Eq+qtLDESyIB:HVxnq9qrB3o8xtvyIB

Score

7^/10

Malware Config

Targets

- Target
  
  4d2ebb1bee548aa98b902e032d643390
- Size
  
  385KB
- MD5
  
  4d2ebb1bee548aa98b902e032d643390
- SHA1
  
  80ce5fcb9812f88eb32346b86f6806a90dfb2fce
- SHA256
  
  e29aa2156031ce038588fbd9282fb0a2ce839b9942abf91b577446332cbf2b93
- SHA512
  
  ba3d42562cb2d258ecf963b4a539b6ceea955696513ee7b2b1529f7df1a9cca69dc1056902e4f23ea7144acc873a2b9bc4c7d42f041bf30c6934138d7db41325
- SSDEEP
  
  12288:H9zxiveq9qN60kG3oUnT1ds05Eq+qtLDESyIB:HVxnq9qrB3o8xtvyIB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2