5114e0caa353258b90b468858765841c88bd8bb6a6dc8b52a5067e1c052a4918 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

793776bfd9edbb98fad70f3191cce882
Size

385KB
Sample

240127-ej4mpscgf2
MD5

793776bfd9edbb98fad70f3191cce882
SHA1

d468a7838ee8d48bb3cef4cd808d726932a8f229
SHA256

5114e0caa353258b90b468858765841c88bd8bb6a6dc8b52a5067e1c052a4918
SHA512

f57b426909c0605acf4fee27595752611702bb7f83da628bb7d35532bb43042b4d52aa67d43cf659c7aa0fc4c74c2ae42fc79eeaf754e3ad3942deaeebf16713
SSDEEP

6144:/AnZvW3OHJTqRgfMZ/JEYRiyu10DMXghqXLH8PziCxtO8RPZfD2QydpZ2ITCIkB:/ShTqRiQbKbcLNZfqzdpZTCIkB

Score

7^/10

Malware Config

Targets

- Target
  
  793776bfd9edbb98fad70f3191cce882
- Size
  
  385KB
- MD5
  
  793776bfd9edbb98fad70f3191cce882
- SHA1
  
  d468a7838ee8d48bb3cef4cd808d726932a8f229
- SHA256
  
  5114e0caa353258b90b468858765841c88bd8bb6a6dc8b52a5067e1c052a4918
- SHA512
  
  f57b426909c0605acf4fee27595752611702bb7f83da628bb7d35532bb43042b4d52aa67d43cf659c7aa0fc4c74c2ae42fc79eeaf754e3ad3942deaeebf16713
- SSDEEP
  
  6144:/AnZvW3OHJTqRgfMZ/JEYRiyu10DMXghqXLH8PziCxtO8RPZfD2QydpZ2ITCIkB:/ShTqRiQbKbcLNZfqzdpZTCIkB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2