e2a1921558591eef3f8943c69d2bf8be20d2e573fb40ba73ec1c327c15767a40 | Triage

Sharing

General

Target

71af4b47675a978d7ae81c8624d9d67e
Size

385KB
Sample

240124-jq4y9sdchk
MD5

71af4b47675a978d7ae81c8624d9d67e
SHA1

bf15c876cec63fd934ecacf14b9eb8fcada42d37
SHA256

e2a1921558591eef3f8943c69d2bf8be20d2e573fb40ba73ec1c327c15767a40
SHA512

8f45cd375c29601dc559a9810a40da0125500d237d641888b3e4c9338f2841865b7afa1e1cfefd224f9995d8b1fc363a8e7b027a6218c792523a69a6158c360a
SSDEEP

12288:Gu4k+BgUyLrKl2mmao432xoVgpNNMHYzCB:GJmtnKl2mbxG2MNNMdB

Score

7^/10

Malware Config

Targets

- Target
  
  71af4b47675a978d7ae81c8624d9d67e
- Size
  
  385KB
- MD5
  
  71af4b47675a978d7ae81c8624d9d67e
- SHA1
  
  bf15c876cec63fd934ecacf14b9eb8fcada42d37
- SHA256
  
  e2a1921558591eef3f8943c69d2bf8be20d2e573fb40ba73ec1c327c15767a40
- SHA512
  
  8f45cd375c29601dc559a9810a40da0125500d237d641888b3e4c9338f2841865b7afa1e1cfefd224f9995d8b1fc363a8e7b027a6218c792523a69a6158c360a
- SSDEEP
  
  12288:Gu4k+BgUyLrKl2mmao432xoVgpNNMHYzCB:GJmtnKl2mbxG2MNNMdB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2