9db611df6f9e669e1f2feb1fbefcd06f5a62a0bc324637da144553bbae2ad4ad | Triage

Sharing

General

Target

72b84fdf8ab0328a663adf3f553512e5
Size

385KB
Sample

240124-wxw88afbhl
MD5

72b84fdf8ab0328a663adf3f553512e5
SHA1

18ca11df8ba16bb517c32d4c9ab5b7a366dcece4
SHA256

9db611df6f9e669e1f2feb1fbefcd06f5a62a0bc324637da144553bbae2ad4ad
SHA512

20551a1c113d3611c25ea1a6a7013a5d0d7aaaef54a3604d410a79e276b7641e97330cf7a953b7a70183bd3911f3ff29a2b7a073a29c816a26b0038b6453c14b
SSDEEP

6144:r7P5SL5MszYsQgBwR2I4mYIFHhSFiVa30pTC9s8z2nlSjW9gXixmjKRzZo4toUB:r9COsMsvQ2IZzBS2uGeuBxzIjKRZvB

Score

7^/10

Malware Config

Targets

- Target
  
  72b84fdf8ab0328a663adf3f553512e5
- Size
  
  385KB
- MD5
  
  72b84fdf8ab0328a663adf3f553512e5
- SHA1
  
  18ca11df8ba16bb517c32d4c9ab5b7a366dcece4
- SHA256
  
  9db611df6f9e669e1f2feb1fbefcd06f5a62a0bc324637da144553bbae2ad4ad
- SHA512
  
  20551a1c113d3611c25ea1a6a7013a5d0d7aaaef54a3604d410a79e276b7641e97330cf7a953b7a70183bd3911f3ff29a2b7a073a29c816a26b0038b6453c14b
- SSDEEP
  
  6144:r7P5SL5MszYsQgBwR2I4mYIFHhSFiVa30pTC9s8z2nlSjW9gXixmjKRzZo4toUB:r9COsMsvQ2IZzBS2uGeuBxzIjKRZvB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2