52c92c5c4d7c8403ba6e5dbc4efb1dfb41b7b47214e1c30eaea9e2c2c811670c | Triage

Sharing

General

Target

6416414c30998cbe193ea40b0e75115e
Size

385KB
Sample

240118-bjhtfshggr
MD5

6416414c30998cbe193ea40b0e75115e
SHA1

581cdcec64d82f42272a30d032c6fbfde6d04b1b
SHA256

52c92c5c4d7c8403ba6e5dbc4efb1dfb41b7b47214e1c30eaea9e2c2c811670c
SHA512

82bdacafca473bc27348b321448813aa88b5dbfa11bb6ff09f4a9a25524d9cfc5c099aa03b30792affdf5a730c20f3d54dd212bf14dfdd8d282c26e6361be1db
SSDEEP

12288:XDBREd40Wth/s7QCDG7RFLq1YV/0TJZTIGB:XttiD+qTTJaGB

Score

7^/10

Malware Config

Targets

- Target
  
  6416414c30998cbe193ea40b0e75115e
- Size
  
  385KB
- MD5
  
  6416414c30998cbe193ea40b0e75115e
- SHA1
  
  581cdcec64d82f42272a30d032c6fbfde6d04b1b
- SHA256
  
  52c92c5c4d7c8403ba6e5dbc4efb1dfb41b7b47214e1c30eaea9e2c2c811670c
- SHA512
  
  82bdacafca473bc27348b321448813aa88b5dbfa11bb6ff09f4a9a25524d9cfc5c099aa03b30792affdf5a730c20f3d54dd212bf14dfdd8d282c26e6361be1db
- SSDEEP
  
  12288:XDBREd40Wth/s7QCDG7RFLq1YV/0TJZTIGB:XttiD+qTTJaGB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2