bb70841b4666dfa83dcf2995a57676fadfba76a12795e4cfd62e65a704641035 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

65d696b361551816241d8e2ba9b4e536
Size

771KB
Sample

240118-x4ehesgdg2
MD5

65d696b361551816241d8e2ba9b4e536
SHA1

17948438133600f4dc03c5d73e914150d9c8e4e7
SHA256

bb70841b4666dfa83dcf2995a57676fadfba76a12795e4cfd62e65a704641035
SHA512

d88171d4c596c7fec2dae3088d2b81abb7c1c56f9ad8c4e31e71fd3900419b8d3154af9af85e12389c0280d78f96ef17dd2c0ba7b8a702db3437a4e0c889c811
SSDEEP

12288:dQl4ftI6j59c+f9/wfAceNYdDKcPzJLniYZ/C9OFEIif0F6rerfrEhU8zFVMB:dQl4ft319cASfnG2tvZWqEIz6qrfiTMB

Score

7^/10

Malware Config

Targets

- Target
  
  65d696b361551816241d8e2ba9b4e536
- Size
  
  771KB
- MD5
  
  65d696b361551816241d8e2ba9b4e536
- SHA1
  
  17948438133600f4dc03c5d73e914150d9c8e4e7
- SHA256
  
  bb70841b4666dfa83dcf2995a57676fadfba76a12795e4cfd62e65a704641035
- SHA512
  
  d88171d4c596c7fec2dae3088d2b81abb7c1c56f9ad8c4e31e71fd3900419b8d3154af9af85e12389c0280d78f96ef17dd2c0ba7b8a702db3437a4e0c889c811
- SSDEEP
  
  12288:dQl4ftI6j59c+f9/wfAceNYdDKcPzJLniYZ/C9OFEIif0F6rerfrEhU8zFVMB:dQl4ft319cASfnG2tvZWqEIz6qrfiTMB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2