3b92c06224c5647f5c011da3843c1aad6c3977808d70420a195ae99aa91a4836 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5c1e61e6b77e599c5229a3f315791f37
Size

385KB
Sample

240115-exx23shbhp
MD5

5c1e61e6b77e599c5229a3f315791f37
SHA1

08558246cf167df0b4e524f8fff54cb2ca5af756
SHA256

3b92c06224c5647f5c011da3843c1aad6c3977808d70420a195ae99aa91a4836
SHA512

ef91b6ea644cd274ee3fc6f298b6474d48d3533bdc8653b0653ce255aa5e38aa9c85865712d7179c39e2b004996ce0c4bae49b5da0ee0f0bc346e728a1120705
SSDEEP

6144:Ft1mE7nEDZzkKwmX3gx2aaZXUzHgNB5iWqpp/exZeLJKc8MUHYuMvB:71mE7nEDuKwmngx2TZGANri9eG4ciWB

Score

7^/10

Malware Config

Targets

- Target
  
  5c1e61e6b77e599c5229a3f315791f37
- Size
  
  385KB
- MD5
  
  5c1e61e6b77e599c5229a3f315791f37
- SHA1
  
  08558246cf167df0b4e524f8fff54cb2ca5af756
- SHA256
  
  3b92c06224c5647f5c011da3843c1aad6c3977808d70420a195ae99aa91a4836
- SHA512
  
  ef91b6ea644cd274ee3fc6f298b6474d48d3533bdc8653b0653ce255aa5e38aa9c85865712d7179c39e2b004996ce0c4bae49b5da0ee0f0bc346e728a1120705
- SSDEEP
  
  6144:Ft1mE7nEDZzkKwmX3gx2aaZXUzHgNB5iWqpp/exZeLJKc8MUHYuMvB:71mE7nEDuKwmngx2TZGANri9eG4ciWB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2