6485ef8255bdf8b9481d755c71521eefd51a361a5fc72108f522a3c39a9c7d3f | Triage

Sharing

General

Target

66dafe32ea75568635851d428149f4b8
Size

385KB
Sample

240119-gh4mesfhfm
MD5

66dafe32ea75568635851d428149f4b8
SHA1

b12882e6cdbbee8b64847797d7a9aecbe109988c
SHA256

6485ef8255bdf8b9481d755c71521eefd51a361a5fc72108f522a3c39a9c7d3f
SHA512

f71433a96d0b1ad24d980dad854fc7ef045b2bcbcc4d52d1b6ddb0de588acb7012ec0f9f6cfcb96e5dd14ab200bb36a75c92bb160f4eb5395bf5a9502db0b61d
SSDEEP

6144:3FzQuCuwHnIlCObBm9fpw3IcwsgWCWACwN2HxqC8waXwCIGy7f3rGu0CB:ih2COdyhczf/BnQyTICB

Score

7^/10

Malware Config

Targets

- Target
  
  66dafe32ea75568635851d428149f4b8
- Size
  
  385KB
- MD5
  
  66dafe32ea75568635851d428149f4b8
- SHA1
  
  b12882e6cdbbee8b64847797d7a9aecbe109988c
- SHA256
  
  6485ef8255bdf8b9481d755c71521eefd51a361a5fc72108f522a3c39a9c7d3f
- SHA512
  
  f71433a96d0b1ad24d980dad854fc7ef045b2bcbcc4d52d1b6ddb0de588acb7012ec0f9f6cfcb96e5dd14ab200bb36a75c92bb160f4eb5395bf5a9502db0b61d
- SSDEEP
  
  6144:3FzQuCuwHnIlCObBm9fpw3IcwsgWCWACwN2HxqC8waXwCIGy7f3rGu0CB:ih2COdyhczf/BnQyTICB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2