208fea7f3e9f7c7f19e906a74429ab025851e21b22444650316503ec197612d2 | Triage

Sharing

General

Target

50be72cb1e50c5ad47204d6ce29cb80d
Size

385KB
Sample

240110-q97ylaheh2
MD5

50be72cb1e50c5ad47204d6ce29cb80d
SHA1

8a6ef27a803ca4d1e38124daf1f0abc7fe9a1fc2
SHA256

208fea7f3e9f7c7f19e906a74429ab025851e21b22444650316503ec197612d2
SHA512

05aa3872611f1f1273b07a114df35598a87827afe890e68a3b4006f3bb8fe0f95c76fadf2ebbfc8d6cf1d78d5db20e459454dcbcfb7ef031619e2ae1d50c73cb
SSDEEP

12288:kaK1XwOW6LOvATybWIkpmlmiAD+03+Ys/FjMB:e1AOW6LOoTuWMmie+YUjMB

Score

7^/10

Malware Config

Targets

- Target
  
  50be72cb1e50c5ad47204d6ce29cb80d
- Size
  
  385KB
- MD5
  
  50be72cb1e50c5ad47204d6ce29cb80d
- SHA1
  
  8a6ef27a803ca4d1e38124daf1f0abc7fe9a1fc2
- SHA256
  
  208fea7f3e9f7c7f19e906a74429ab025851e21b22444650316503ec197612d2
- SHA512
  
  05aa3872611f1f1273b07a114df35598a87827afe890e68a3b4006f3bb8fe0f95c76fadf2ebbfc8d6cf1d78d5db20e459454dcbcfb7ef031619e2ae1d50c73cb
- SSDEEP
  
  12288:kaK1XwOW6LOvATybWIkpmlmiAD+03+Ys/FjMB:e1AOW6LOoTuWMmie+YUjMB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2