d0603e11e44f86089af046ced75947d3facf3c6e40ae79e7df3f5fad4a36708f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6875d75038a21a88ea491c1441e0914a
Size

385KB
Sample

240119-yag7wscchr
MD5

6875d75038a21a88ea491c1441e0914a
SHA1

3ae0693032e90c107081c3295f06a8b13646884a
SHA256

d0603e11e44f86089af046ced75947d3facf3c6e40ae79e7df3f5fad4a36708f
SHA512

051f31a448d2395f3713e98fc31398ee424fe6c1a85298d7d1c5d0393da3331549d98ac1dfe592125101f354ac0db51b4bb61c3a6bc3d5159ce9a3fa20410695
SSDEEP

12288:YH38TCOpkq1ItLlH0lbbkqueV6dnNEpKB:YHfOpnEKbEB

Score

7^/10

Malware Config

Targets

- Target
  
  6875d75038a21a88ea491c1441e0914a
- Size
  
  385KB
- MD5
  
  6875d75038a21a88ea491c1441e0914a
- SHA1
  
  3ae0693032e90c107081c3295f06a8b13646884a
- SHA256
  
  d0603e11e44f86089af046ced75947d3facf3c6e40ae79e7df3f5fad4a36708f
- SHA512
  
  051f31a448d2395f3713e98fc31398ee424fe6c1a85298d7d1c5d0393da3331549d98ac1dfe592125101f354ac0db51b4bb61c3a6bc3d5159ce9a3fa20410695
- SSDEEP
  
  12288:YH38TCOpkq1ItLlH0lbbkqueV6dnNEpKB:YHfOpnEKbEB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2