4fa28a8c352a504fe7aff6e5850a15e4d1afad042185416a7ba39856a4de2b84 | Triage

Sharing

General

Target

65d3b06caf6ebfc282344e9d7e4ee80c
Size

385KB
Sample

240118-xzzmssfffp
MD5

65d3b06caf6ebfc282344e9d7e4ee80c
SHA1

f117f7226f54391d009e8d634f662ae4aa052e03
SHA256

4fa28a8c352a504fe7aff6e5850a15e4d1afad042185416a7ba39856a4de2b84
SHA512

751090a62ec0eb66660211c29dd03d980c0ea8d77d55663faac21c9e61b5873f773ce94dd302ee0409e8126f115fa12c3f0cce1467ebec0db99a9d0e90066e9c
SSDEEP

6144:G7rfojVa3bwQKbe2t9dC/X64lrNs9LsTT46q8K4Rt9QdSvOzexxB0mNs01CU4qc4:GHeI30Qs5+64lrNsP50Qi9Ns/HImWfB

Score

7^/10

Malware Config

Targets

- Target
  
  65d3b06caf6ebfc282344e9d7e4ee80c
- Size
  
  385KB
- MD5
  
  65d3b06caf6ebfc282344e9d7e4ee80c
- SHA1
  
  f117f7226f54391d009e8d634f662ae4aa052e03
- SHA256
  
  4fa28a8c352a504fe7aff6e5850a15e4d1afad042185416a7ba39856a4de2b84
- SHA512
  
  751090a62ec0eb66660211c29dd03d980c0ea8d77d55663faac21c9e61b5873f773ce94dd302ee0409e8126f115fa12c3f0cce1467ebec0db99a9d0e90066e9c
- SSDEEP
  
  6144:G7rfojVa3bwQKbe2t9dC/X64lrNs9LsTT46q8K4Rt9QdSvOzexxB0mNs01CU4qc4:GHeI30Qs5+64lrNsP50Qi9Ns/HImWfB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2