3521a1664a720910cb232ab1315ad9c4f67a62e09f9ef648ea5948e1da6e4a65 | Triage

Sharing

General

Target

5a7118ee7974e2cd84e4c97d9d178d35
Size

385KB
Sample

240114-ggh94aeae4
MD5

5a7118ee7974e2cd84e4c97d9d178d35
SHA1

aed3b3a51167a6051c9656a20016b259069acb98
SHA256

3521a1664a720910cb232ab1315ad9c4f67a62e09f9ef648ea5948e1da6e4a65
SHA512

d120d48f97721a799813f66df5ec1d1489f2297c527ed411885956c720cf6bdfb9d82317b1ff53e6faa989b4b9c0e2b80e5eb83fc8a622e6842560cd2f5d8ed6
SSDEEP

6144:aoKPBhkE2dn9o5NIOcgj51Xs4ZFmO6dvtzuLDIv6MKl1IB1Gl/NJelP6jzhB:aoIP2dngd1c47m/8Lw6/l1610NJelCJB

Score

7^/10

Malware Config

Targets

- Target
  
  5a7118ee7974e2cd84e4c97d9d178d35
- Size
  
  385KB
- MD5
  
  5a7118ee7974e2cd84e4c97d9d178d35
- SHA1
  
  aed3b3a51167a6051c9656a20016b259069acb98
- SHA256
  
  3521a1664a720910cb232ab1315ad9c4f67a62e09f9ef648ea5948e1da6e4a65
- SHA512
  
  d120d48f97721a799813f66df5ec1d1489f2297c527ed411885956c720cf6bdfb9d82317b1ff53e6faa989b4b9c0e2b80e5eb83fc8a622e6842560cd2f5d8ed6
- SSDEEP
  
  6144:aoKPBhkE2dn9o5NIOcgj51Xs4ZFmO6dvtzuLDIv6MKl1IB1Gl/NJelP6jzhB:aoIP2dngd1c47m/8Lw6/l1610NJelCJB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2