b2dc6c44b0f647738b61b9a351adcc7080474626553c3e652cc15e15acf6d699 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b397600aa06eabbba33db49aecc23a2
Size

907KB
Sample

240114-pjq2qaagc9
MD5

5b397600aa06eabbba33db49aecc23a2
SHA1

84b33d254bd2ae879811b756a8f5b036a33a2523
SHA256

b2dc6c44b0f647738b61b9a351adcc7080474626553c3e652cc15e15acf6d699
SHA512

fb22b0d7adb9cf9a4881791421424df5bef0fc5110b04a73197d20e4b0cb3589624765b8539df8f5292279261116356950b5653b4155e307990f2bc33c847c6a
SSDEEP

12288:gQtWOhj+SqZIeLIVEF4xugpgUU3ytqAGlNXGXP8/QtITPRqhhp6QXGjVDa/ZS1:x6vLaHpgUUitqAslCwQaGp6QXEa/ZS1

Score

7^/10

Malware Config

Targets

- Target
  
  5b397600aa06eabbba33db49aecc23a2
- Size
  
  907KB
- MD5
  
  5b397600aa06eabbba33db49aecc23a2
- SHA1
  
  84b33d254bd2ae879811b756a8f5b036a33a2523
- SHA256
  
  b2dc6c44b0f647738b61b9a351adcc7080474626553c3e652cc15e15acf6d699
- SHA512
  
  fb22b0d7adb9cf9a4881791421424df5bef0fc5110b04a73197d20e4b0cb3589624765b8539df8f5292279261116356950b5653b4155e307990f2bc33c847c6a
- SSDEEP
  
  12288:gQtWOhj+SqZIeLIVEF4xugpgUU3ytqAGlNXGXP8/QtITPRqhhp6QXGjVDa/ZS1:x6vLaHpgUUitqAslCwQaGp6QXEa/ZS1
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2