063a43646678670439fb656240f5f158d811d9620de03276cda7ff5b6bd2ad17 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8cd3c9a8f0b3b58105f1f7f5e9dda3ff
Size

385KB
Sample

240203-t8cb3sdge2
MD5

8cd3c9a8f0b3b58105f1f7f5e9dda3ff
SHA1

a25515f7e6800f7e4c728449851ae9721c7879f6
SHA256

063a43646678670439fb656240f5f158d811d9620de03276cda7ff5b6bd2ad17
SHA512

2ee5899180aad7505014f814377db4ec33b36eea687416e4cb8927f901ed90bd85cb0cd1db810c252324a7ab7ffb9482f4088ea07a3fed407a782fe02b57621b
SSDEEP

12288:MgYk+Q8ZkxuGjwwKLTyHMMrUIYjjbGOmB:wDGMcwwKL6MMrUIdzB

Score

7^/10

Malware Config

Targets

- Target
  
  8cd3c9a8f0b3b58105f1f7f5e9dda3ff
- Size
  
  385KB
- MD5
  
  8cd3c9a8f0b3b58105f1f7f5e9dda3ff
- SHA1
  
  a25515f7e6800f7e4c728449851ae9721c7879f6
- SHA256
  
  063a43646678670439fb656240f5f158d811d9620de03276cda7ff5b6bd2ad17
- SHA512
  
  2ee5899180aad7505014f814377db4ec33b36eea687416e4cb8927f901ed90bd85cb0cd1db810c252324a7ab7ffb9482f4088ea07a3fed407a782fe02b57621b
- SSDEEP
  
  12288:MgYk+Q8ZkxuGjwwKLTyHMMrUIYjjbGOmB:wDGMcwwKL6MMrUIdzB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2