2ee8b61b517e29bce261124cac1c9a5e1606f70bc64831f92a2bc612b04f726e | Triage

Sharing

General

Target

5697c2c5075fc532f0087b145e4b2444
Size

385KB
Sample

240112-qsbttshfb9
MD5

5697c2c5075fc532f0087b145e4b2444
SHA1

6f7a636802128c80724aae70edc864db59a962d5
SHA256

2ee8b61b517e29bce261124cac1c9a5e1606f70bc64831f92a2bc612b04f726e
SHA512

19f4ed5e767286d6a240230c92cceffa63a2bdec95741e8e1ee2d2ea492d44cc10f36c94bc026e41773b4f3b0b36c6f4992c844dba1540d530ce736e6da14f04
SSDEEP

12288:vHL+d5ynt2JqBB8fQpOYLHQxwB9SYTQVY0j3B:PL+PynkIf8fQpOewM9NAYYB

Score

7^/10

Malware Config

Targets

- Target
  
  5697c2c5075fc532f0087b145e4b2444
- Size
  
  385KB
- MD5
  
  5697c2c5075fc532f0087b145e4b2444
- SHA1
  
  6f7a636802128c80724aae70edc864db59a962d5
- SHA256
  
  2ee8b61b517e29bce261124cac1c9a5e1606f70bc64831f92a2bc612b04f726e
- SHA512
  
  19f4ed5e767286d6a240230c92cceffa63a2bdec95741e8e1ee2d2ea492d44cc10f36c94bc026e41773b4f3b0b36c6f4992c844dba1540d530ce736e6da14f04
- SSDEEP
  
  12288:vHL+d5ynt2JqBB8fQpOYLHQxwB9SYTQVY0j3B:PL+PynkIf8fQpOewM9NAYYB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2