5f9b359fc5134f6c5c292c5d283209ee60fc4d9899bdf60e81afe0e9d4e52b49 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b6a1ce44f7e98163c52235c5cf61ff1
Size

385KB
Sample

240114-q8wh6sbcdp
MD5

5b6a1ce44f7e98163c52235c5cf61ff1
SHA1

c4a07b2d81e8ed49ec89c7dec7f17a34b9d6a3ae
SHA256

5f9b359fc5134f6c5c292c5d283209ee60fc4d9899bdf60e81afe0e9d4e52b49
SHA512

079c721a39e5f4d959e5b637cc579d94129f7eae890bf58f7e858405a822b768bfd49dd2bf9d951cc07daf81cd8fa231cf46a2796cc348d7daeff912ed121124
SSDEEP

6144:dGt39fkZngW84iv4iRRx3HGq5g+3No5L3gF2Ri9TgnSvJIEyx0+Mh8RjyP3Ek6Xu:Exaj8RvTR9/gWCUcFODyx0+08SN6XUB

Score

7^/10

Malware Config

Targets

- Target
  
  5b6a1ce44f7e98163c52235c5cf61ff1
- Size
  
  385KB
- MD5
  
  5b6a1ce44f7e98163c52235c5cf61ff1
- SHA1
  
  c4a07b2d81e8ed49ec89c7dec7f17a34b9d6a3ae
- SHA256
  
  5f9b359fc5134f6c5c292c5d283209ee60fc4d9899bdf60e81afe0e9d4e52b49
- SHA512
  
  079c721a39e5f4d959e5b637cc579d94129f7eae890bf58f7e858405a822b768bfd49dd2bf9d951cc07daf81cd8fa231cf46a2796cc348d7daeff912ed121124
- SSDEEP
  
  6144:dGt39fkZngW84iv4iRRx3HGq5g+3No5L3gF2Ri9TgnSvJIEyx0+Mh8RjyP3Ek6Xu:Exaj8RvTR9/gWCUcFODyx0+08SN6XUB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2