9957c1c77e9016f3a67cb2d698be6c8eab8195383ecd8263acd9c439abe3c90d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66eb6b46c43eca49cc65d39fc04bdb9e
Size

385KB
Sample

240119-g4zklahad8
MD5

66eb6b46c43eca49cc65d39fc04bdb9e
SHA1

da554dc8266a201319a4c52c000a74ea04edee6e
SHA256

9957c1c77e9016f3a67cb2d698be6c8eab8195383ecd8263acd9c439abe3c90d
SHA512

ae48f59d7993fe899d63e140da8afb735a45b8588d02bea74c43c7b57d744a916ff2655477aef75d15269a6e25f7bf41923bd766ce7d38df85bbb5a4363fb940
SSDEEP

12288:Rttgach32EMRBHbegTWWO4Gls2SCoPxNB:Htm3sX6vWnPxNB

Score

7^/10

Malware Config

Targets

- Target
  
  66eb6b46c43eca49cc65d39fc04bdb9e
- Size
  
  385KB
- MD5
  
  66eb6b46c43eca49cc65d39fc04bdb9e
- SHA1
  
  da554dc8266a201319a4c52c000a74ea04edee6e
- SHA256
  
  9957c1c77e9016f3a67cb2d698be6c8eab8195383ecd8263acd9c439abe3c90d
- SHA512
  
  ae48f59d7993fe899d63e140da8afb735a45b8588d02bea74c43c7b57d744a916ff2655477aef75d15269a6e25f7bf41923bd766ce7d38df85bbb5a4363fb940
- SSDEEP
  
  12288:Rttgach32EMRBHbegTWWO4Gls2SCoPxNB:Htm3sX6vWnPxNB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2