6bc0018e820e26dda5761444d986cd378b85e821f3ef3c16003a87a1581dceca | Triage

Sharing

General

Target

65ec2fd57d26c57f00998518b2be50d4
Size

907KB
Sample

240118-ywp5mahbd8
MD5

65ec2fd57d26c57f00998518b2be50d4
SHA1

d66eb54a0031bdb9fbab4e01926ba7f799913cd6
SHA256

6bc0018e820e26dda5761444d986cd378b85e821f3ef3c16003a87a1581dceca
SHA512

b72f155b8a44d5a602ed77b92213609acba7a5b36d34ae091989592c1b81b1ef9a7ad9e73c0fc1840338dd6617b4aaa96c08aeb320545eba51b2c096764d28c7
SSDEEP

12288:aCG6FygVH63C7bjfqfzB7VVVZYfkRP3YzOy1I+R8SwhjpSttqjIwXjqQSeQjVDaq:a2/2bB7l1cVRjw7StmTqi2a/ZS1

Score

7^/10

Malware Config

Targets

- Target
  
  65ec2fd57d26c57f00998518b2be50d4
- Size
  
  907KB
- MD5
  
  65ec2fd57d26c57f00998518b2be50d4
- SHA1
  
  d66eb54a0031bdb9fbab4e01926ba7f799913cd6
- SHA256
  
  6bc0018e820e26dda5761444d986cd378b85e821f3ef3c16003a87a1581dceca
- SHA512
  
  b72f155b8a44d5a602ed77b92213609acba7a5b36d34ae091989592c1b81b1ef9a7ad9e73c0fc1840338dd6617b4aaa96c08aeb320545eba51b2c096764d28c7
- SSDEEP
  
  12288:aCG6FygVH63C7bjfqfzB7VVVZYfkRP3YzOy1I+R8SwhjpSttqjIwXjqQSeQjVDaq:a2/2bB7l1cVRjw7StmTqi2a/ZS1
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2