4468f6c8f8ae74d4a1003ac763ec6b0be96dccdaa511e5d7eecfa72161a2b374 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6663f58ab882da7cee36b7191fc68c73
Size

385KB
Sample

240119-ad8bgsaabp
MD5

6663f58ab882da7cee36b7191fc68c73
SHA1

34b2dea8ec5a0c05ad1968ba26a46e2c967b90d3
SHA256

4468f6c8f8ae74d4a1003ac763ec6b0be96dccdaa511e5d7eecfa72161a2b374
SHA512

3a3b5f59fa4868368547c88b79e828ac70bebb8b84e6bc5947b407df958e78017ca99e40cafccf2f4152fddf07146c23efaf5e013a8ca93f042c141cbc7f1c7a
SSDEEP

12288:NcAJZDZfVcPxJspYPmF/FzlcnJxQz2rD5YWfQv+i9veB:NcGZVcnm9gnPQyr9YWfK9GB

Score

7^/10

Malware Config

Targets

- Target
  
  6663f58ab882da7cee36b7191fc68c73
- Size
  
  385KB
- MD5
  
  6663f58ab882da7cee36b7191fc68c73
- SHA1
  
  34b2dea8ec5a0c05ad1968ba26a46e2c967b90d3
- SHA256
  
  4468f6c8f8ae74d4a1003ac763ec6b0be96dccdaa511e5d7eecfa72161a2b374
- SHA512
  
  3a3b5f59fa4868368547c88b79e828ac70bebb8b84e6bc5947b407df958e78017ca99e40cafccf2f4152fddf07146c23efaf5e013a8ca93f042c141cbc7f1c7a
- SSDEEP
  
  12288:NcAJZDZfVcPxJspYPmF/FzlcnJxQz2rD5YWfQv+i9veB:NcGZVcnm9gnPQyr9YWfK9GB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2