e5b20d98fa6c41549d56eba28d3f986f36cc12369a2fc920be4b8e6cc69b7107 | Triage

Sharing

General

Target

8a9cf624d9d3f0347671aff0a51e3b74
Size

385KB
Sample

240202-1l79kaafam
MD5

8a9cf624d9d3f0347671aff0a51e3b74
SHA1

ffb8ee41e3c41065f8d2e402eae2078f6c62ef82
SHA256

e5b20d98fa6c41549d56eba28d3f986f36cc12369a2fc920be4b8e6cc69b7107
SHA512

e629a317ba15f28cdd22046b015955d83dce071cabd5be05d26e5ec0d5aebdf4d1ce3ba27df0ae4cdbc8385cd9b0107d8e8b13311208c01ca07cc1aac6bf8b75
SSDEEP

6144:MicmQxt8qETfronx5WFs1+T+gqbwu75r7gw3doGFZrey7uv1zkBMPKS5WEALB:MiWPsfcnxd+T+MQpMI9ruvmWKqWtB

Score

7^/10

Malware Config

Targets

- Target
  
  8a9cf624d9d3f0347671aff0a51e3b74
- Size
  
  385KB
- MD5
  
  8a9cf624d9d3f0347671aff0a51e3b74
- SHA1
  
  ffb8ee41e3c41065f8d2e402eae2078f6c62ef82
- SHA256
  
  e5b20d98fa6c41549d56eba28d3f986f36cc12369a2fc920be4b8e6cc69b7107
- SHA512
  
  e629a317ba15f28cdd22046b015955d83dce071cabd5be05d26e5ec0d5aebdf4d1ce3ba27df0ae4cdbc8385cd9b0107d8e8b13311208c01ca07cc1aac6bf8b75
- SSDEEP
  
  6144:MicmQxt8qETfronx5WFs1+T+gqbwu75r7gw3doGFZrey7uv1zkBMPKS5WEALB:MiWPsfcnxd+T+MQpMI9ruvmWKqWtB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2