35458767a12563f90d5f81099f1b7961c664771fa1ad8d46d9458fe8422dc3c3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85ca875500677fae0088d672c94145a8
Size

385KB
Sample

240201-dw63xsacb8
MD5

85ca875500677fae0088d672c94145a8
SHA1

661ab96b8889ce30329a1890874bfd490ac90747
SHA256

35458767a12563f90d5f81099f1b7961c664771fa1ad8d46d9458fe8422dc3c3
SHA512

b2cc40208c867afd714397754838571aed3c5e7f736af38df22f769f6711cc9e53f2ca684f9bbdac25db2fc8a928946c37a746eec06709a7a12edc81ff5be0cd
SSDEEP

6144:W8x+1/Kh1WM71WIAP2KmkVaHthr9TyDNDdLbOY7bOM75b83rNsUeC0aPfx66AkcR:f+1/K3FAP2K0HtAxtOrn3eC0aL7ZvqB

Score

7^/10

Malware Config

Targets

- Target
  
  85ca875500677fae0088d672c94145a8
- Size
  
  385KB
- MD5
  
  85ca875500677fae0088d672c94145a8
- SHA1
  
  661ab96b8889ce30329a1890874bfd490ac90747
- SHA256
  
  35458767a12563f90d5f81099f1b7961c664771fa1ad8d46d9458fe8422dc3c3
- SHA512
  
  b2cc40208c867afd714397754838571aed3c5e7f736af38df22f769f6711cc9e53f2ca684f9bbdac25db2fc8a928946c37a746eec06709a7a12edc81ff5be0cd
- SSDEEP
  
  6144:W8x+1/Kh1WM71WIAP2KmkVaHthr9TyDNDdLbOY7bOM75b83rNsUeC0aPfx66AkcR:f+1/K3FAP2K0HtAxtOrn3eC0aL7ZvqB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2