1945b2312cf9f3dd282dae950cdebe6cda599311d2eaaa0287eeaa62999ea8c8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7e5cb9a120a83d90a2eed895b2c76787
Size

385KB
Sample

240129-aey47sfbek
MD5

7e5cb9a120a83d90a2eed895b2c76787
SHA1

348413202fd5197bda78c662a79ff45f6057d593
SHA256

1945b2312cf9f3dd282dae950cdebe6cda599311d2eaaa0287eeaa62999ea8c8
SHA512

555b971dcd0e8389fb614c52465b8b370221fb34deae3bb51ea1a12fc691719c71ec34ce976e9d3a72037de9541e5b8a0ef3b0639d1559d8454f6170f16784eb
SSDEEP

12288:jP11iB8+AdAsQLa1G3xy1LLtYL/jOsI+31+CcA9VIFLjK0mUUE/Up9kJPYQG1r19:qaQ331stIO8KziB

Score

7^/10

Malware Config

Targets

- Target
  
  7e5cb9a120a83d90a2eed895b2c76787
- Size
  
  385KB
- MD5
  
  7e5cb9a120a83d90a2eed895b2c76787
- SHA1
  
  348413202fd5197bda78c662a79ff45f6057d593
- SHA256
  
  1945b2312cf9f3dd282dae950cdebe6cda599311d2eaaa0287eeaa62999ea8c8
- SHA512
  
  555b971dcd0e8389fb614c52465b8b370221fb34deae3bb51ea1a12fc691719c71ec34ce976e9d3a72037de9541e5b8a0ef3b0639d1559d8454f6170f16784eb
- SSDEEP
  
  12288:jP11iB8+AdAsQLa1G3xy1LLtYL/jOsI+31+CcA9VIFLjK0mUUE/Up9kJPYQG1r19:qaQ331stIO8KziB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2