dea629be4857209a3a50ae870d22b93ca8e4692bd2af52d2d70cf7cfdfced664 | Triage

Sharing

General

Target

53ca800aa9a8804ae4d697fb3818901e
Size

385KB
Sample

240111-r27hjaaeh2
MD5

53ca800aa9a8804ae4d697fb3818901e
SHA1

28d79bb42f74672f0b9c5b98ac1491bcf87e8558
SHA256

dea629be4857209a3a50ae870d22b93ca8e4692bd2af52d2d70cf7cfdfced664
SHA512

1cb10af85ad92ebb143f6a7d743c13398f469f8f42d30f6c60233615030a80972d1884abdaceb8f5df19d2562c651352b28f447a7f9663b701896d3c46902666
SSDEEP

6144:NwBGsDyBa2leh+R0u67vdV2ROhJ1oMWbqQvH17KdBUfhi+XpVGj0WArlCoe5B:NwdZzCV6HB31xWzedyT2jzws5B

Score

7^/10

Malware Config

Targets

- Target
  
  53ca800aa9a8804ae4d697fb3818901e
- Size
  
  385KB
- MD5
  
  53ca800aa9a8804ae4d697fb3818901e
- SHA1
  
  28d79bb42f74672f0b9c5b98ac1491bcf87e8558
- SHA256
  
  dea629be4857209a3a50ae870d22b93ca8e4692bd2af52d2d70cf7cfdfced664
- SHA512
  
  1cb10af85ad92ebb143f6a7d743c13398f469f8f42d30f6c60233615030a80972d1884abdaceb8f5df19d2562c651352b28f447a7f9663b701896d3c46902666
- SSDEEP
  
  6144:NwBGsDyBa2leh+R0u67vdV2ROhJ1oMWbqQvH17KdBUfhi+XpVGj0WArlCoe5B:NwdZzCV6HB31xWzedyT2jzws5B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2