f9f90f04ccae857ac88d6e6e02412025b9bf52e173b5267be0154af65f2e49aa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

67de4948585a33f578cfee9d90901aec
Size

907KB
Sample

240119-rz1bfafhdk
MD5

67de4948585a33f578cfee9d90901aec
SHA1

0f4633eb99889d0a62360c9e37209440d1a111a7
SHA256

f9f90f04ccae857ac88d6e6e02412025b9bf52e173b5267be0154af65f2e49aa
SHA512

def61d71234a605d79786e5895325145efa3ac6b9f95c749d03909f73f622f430fb78f147e88f8acd502068ffc9c27e0ab871b74370bb903f467a62976ee1814
SSDEEP

12288:wI4Ku3azdYrShP7rid5orLyTJKGmk5iL3LJCfo6OyVs0+Whz3QPZjVDa/ZS1:wI4KuGYe7CGLTGz0Luoa5QPfa/ZS1

Score

7^/10

Malware Config

Targets

- Target
  
  67de4948585a33f578cfee9d90901aec
- Size
  
  907KB
- MD5
  
  67de4948585a33f578cfee9d90901aec
- SHA1
  
  0f4633eb99889d0a62360c9e37209440d1a111a7
- SHA256
  
  f9f90f04ccae857ac88d6e6e02412025b9bf52e173b5267be0154af65f2e49aa
- SHA512
  
  def61d71234a605d79786e5895325145efa3ac6b9f95c749d03909f73f622f430fb78f147e88f8acd502068ffc9c27e0ab871b74370bb903f467a62976ee1814
- SSDEEP
  
  12288:wI4Ku3azdYrShP7rid5orLyTJKGmk5iL3LJCfo6OyVs0+Whz3QPZjVDa/ZS1:wI4KuGYe7CGLTGz0Luoa5QPfa/ZS1
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2