edcefefdc8aa3d576f98a556d8ff6673143db1d415bf7b5d85b69a7ca0edd3c5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a1abbd9ea20051a54f5423a240b967c
Size

385KB
Sample

240114-dh3tcabhg4
MD5

5a1abbd9ea20051a54f5423a240b967c
SHA1

89e07738f5cdd36c70a4e14182ad45b46a44a6d1
SHA256

edcefefdc8aa3d576f98a556d8ff6673143db1d415bf7b5d85b69a7ca0edd3c5
SHA512

c907adfc786d0ebfdfce9befa6349e06d5c8fac4f0fec21840ffe8f52a9180aee8108758fa683ffe9cd3703957ff6ee99e01c19c61ee1ef91d73e4527818dee0
SSDEEP

6144:CZZ9H45GqTC9G0E50ibukcworeH2TorrR64PvnGniHyGiLhPCcjekB:CZf4ImaG5Y1SeorI4PvnGniHVYFCcikB

Score

7^/10

Malware Config

Targets

- Target
  
  5a1abbd9ea20051a54f5423a240b967c
- Size
  
  385KB
- MD5
  
  5a1abbd9ea20051a54f5423a240b967c
- SHA1
  
  89e07738f5cdd36c70a4e14182ad45b46a44a6d1
- SHA256
  
  edcefefdc8aa3d576f98a556d8ff6673143db1d415bf7b5d85b69a7ca0edd3c5
- SHA512
  
  c907adfc786d0ebfdfce9befa6349e06d5c8fac4f0fec21840ffe8f52a9180aee8108758fa683ffe9cd3703957ff6ee99e01c19c61ee1ef91d73e4527818dee0
- SSDEEP
  
  6144:CZZ9H45GqTC9G0E50ibukcworeH2TorrR64PvnGniHyGiLhPCcjekB:CZf4ImaG5Y1SeorI4PvnGniHVYFCcikB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2