f76582fd23760954b5d70214fad0f30431784eee038344bd6379514910ea5a62 | Triage

Sharing

General

Target

5c1c1ef936ea55e2b3044d3f81d742e2
Size

385KB
Sample

240115-evfp1saba7
MD5

5c1c1ef936ea55e2b3044d3f81d742e2
SHA1

909cab33c686cf2e72dada529d0411f834d0627a
SHA256

f76582fd23760954b5d70214fad0f30431784eee038344bd6379514910ea5a62
SHA512

7f3f3702856ac7cb1c5ee6bcb6057a6a7631c94aac85ff40654822210e8862a34bbcc6b1869a08e5b61c491e664a72c641dc9de96f5b0172b2234afec9e828dd
SSDEEP

12288:x+e5c18/achlpPRj+8oXIca9UjaJUCjpCHbLfL9eB:tODM+8oXIXAaWbNeB

Score

7^/10

Malware Config

Targets

- Target
  
  5c1c1ef936ea55e2b3044d3f81d742e2
- Size
  
  385KB
- MD5
  
  5c1c1ef936ea55e2b3044d3f81d742e2
- SHA1
  
  909cab33c686cf2e72dada529d0411f834d0627a
- SHA256
  
  f76582fd23760954b5d70214fad0f30431784eee038344bd6379514910ea5a62
- SHA512
  
  7f3f3702856ac7cb1c5ee6bcb6057a6a7631c94aac85ff40654822210e8862a34bbcc6b1869a08e5b61c491e664a72c641dc9de96f5b0172b2234afec9e828dd
- SSDEEP
  
  12288:x+e5c18/achlpPRj+8oXIca9UjaJUCjpCHbLfL9eB:tODM+8oXIXAaWbNeB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2