bffc7a9444b6d3ef9d3c172e3c16e3c6a0f4ce849b32a8f570640bb7c5b52622 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4d4df72154cbc5d7a6bc9c9c812a3246
Size

385KB
Sample

240109-eskaesfaan
MD5

4d4df72154cbc5d7a6bc9c9c812a3246
SHA1

4b736e61ecf90339542e6527b23fc006ddc0f49e
SHA256

bffc7a9444b6d3ef9d3c172e3c16e3c6a0f4ce849b32a8f570640bb7c5b52622
SHA512

c9bb11e9343a593b3ec3558ffc79df3c837285c619c406e48723f652790ad195d268b084f1ec132199edf6ace2c95e2865ccf5d7748f7765d4779bacbf2730ea
SSDEEP

6144:5k4UDKwcGOxueNEKgAGNmNN0ycN+HD+jt+Et1TkSssxabUAVhUZv5BYZB:ygwcGTKANmT0jN+Hi5H1TkXm2hA8ZB

Score

7^/10

Malware Config

Targets

- Target
  
  4d4df72154cbc5d7a6bc9c9c812a3246
- Size
  
  385KB
- MD5
  
  4d4df72154cbc5d7a6bc9c9c812a3246
- SHA1
  
  4b736e61ecf90339542e6527b23fc006ddc0f49e
- SHA256
  
  bffc7a9444b6d3ef9d3c172e3c16e3c6a0f4ce849b32a8f570640bb7c5b52622
- SHA512
  
  c9bb11e9343a593b3ec3558ffc79df3c837285c619c406e48723f652790ad195d268b084f1ec132199edf6ace2c95e2865ccf5d7748f7765d4779bacbf2730ea
- SSDEEP
  
  6144:5k4UDKwcGOxueNEKgAGNmNN0ycN+HD+jt+Et1TkSssxabUAVhUZv5BYZB:ygwcGTKANmT0jN+Hi5H1TkXm2hA8ZB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2