b431b5b2d37e110322e5d6b1d88b4e959996673300b6ceafdbe15fb79be7d1b1 | Triage

Sharing

General

Target

5bda20e8c482c63f43db6a96165a36f8
Size

907KB
Sample

240115-chtp1afcgl
MD5

5bda20e8c482c63f43db6a96165a36f8
SHA1

03a43f299835395e11ed13715f1a97c5fd1c2a2b
SHA256

b431b5b2d37e110322e5d6b1d88b4e959996673300b6ceafdbe15fb79be7d1b1
SHA512

e857f899363d105b476b07cf6513cee5c8427c3c9a972ef427929f0ea15ee47022bc3b8d173edfd0d69c81ba0e411415635749624a56fc03e3cd54c98354be48
SSDEEP

24576:V839POUMB32Dtn9/8Tln4TShdoela/ZS1:VCPOU232DtgnDhC6gS

Score

7^/10

Malware Config

Targets

- Target
  
  5bda20e8c482c63f43db6a96165a36f8
- Size
  
  907KB
- MD5
  
  5bda20e8c482c63f43db6a96165a36f8
- SHA1
  
  03a43f299835395e11ed13715f1a97c5fd1c2a2b
- SHA256
  
  b431b5b2d37e110322e5d6b1d88b4e959996673300b6ceafdbe15fb79be7d1b1
- SHA512
  
  e857f899363d105b476b07cf6513cee5c8427c3c9a972ef427929f0ea15ee47022bc3b8d173edfd0d69c81ba0e411415635749624a56fc03e3cd54c98354be48
- SSDEEP
  
  24576:V839POUMB32Dtn9/8Tln4TShdoela/ZS1:VCPOU232DtgnDhC6gS
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2