44760c90fd6fd575e4e1ad2a73bc4d83c45f007f5c9d178d05cb7f979716a111 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

58606a61098db3bcf2ff8e4be9d0b895
Size

771KB
Sample

240113-jne75afcb2
MD5

58606a61098db3bcf2ff8e4be9d0b895
SHA1

b5405b3b11707a3d692eed0944f218b6ef0bb4ac
SHA256

44760c90fd6fd575e4e1ad2a73bc4d83c45f007f5c9d178d05cb7f979716a111
SHA512

c49933d9b5d5780fd631b6dde2a8fe266f249f61cdd3d531a8246987ae5d8973d479dd259a6f702bbb9b43ef6331e42c950c95a4b4e39a50cbb36ba39d4c367c
SSDEEP

12288:cfuPgGFoRqIT5Q/Y4FdRFb10VHmDXTuFaa2AtyGTKOF25ZoJJyhRge8BpH9PVB:rPBzIFF4RFb10hJaothZ2/T6FBBB

Score

7^/10

Malware Config

Targets

- Target
  
  58606a61098db3bcf2ff8e4be9d0b895
- Size
  
  771KB
- MD5
  
  58606a61098db3bcf2ff8e4be9d0b895
- SHA1
  
  b5405b3b11707a3d692eed0944f218b6ef0bb4ac
- SHA256
  
  44760c90fd6fd575e4e1ad2a73bc4d83c45f007f5c9d178d05cb7f979716a111
- SHA512
  
  c49933d9b5d5780fd631b6dde2a8fe266f249f61cdd3d531a8246987ae5d8973d479dd259a6f702bbb9b43ef6331e42c950c95a4b4e39a50cbb36ba39d4c367c
- SSDEEP
  
  12288:cfuPgGFoRqIT5Q/Y4FdRFb10VHmDXTuFaa2AtyGTKOF25ZoJJyhRge8BpH9PVB:rPBzIFF4RFb10hJaothZ2/T6FBBB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2