fac408e41d63e355789e455419e03bd44b0fc3c173968f666e3fe264c5aca058 | Triage

Sharing

General

Target

8df6a24fb549ca596f9924eb7421158a
Size

771KB
Sample

240204-cnlxcafag8
MD5

8df6a24fb549ca596f9924eb7421158a
SHA1

f11b33f4a26c15b52b0a6cb1d1b822def7924656
SHA256

fac408e41d63e355789e455419e03bd44b0fc3c173968f666e3fe264c5aca058
SHA512

1681313424dbccd9d041fa9aa4807d45798763d5f843c16b8fed75d7cd456475b40e82ccd10e74b26944f8baf9ba9ef07acde4af73d635250f2bb3783ffbe2f4
SSDEEP

12288:NzQUTpMHQ8EImo8gdTe2YZJPOb10VHmDXTuFaa2AtyGTKOF25ZoJJyhRge8BpH9r:9QUTUp8ghGXOb10hJaothZ2/T6FBBB

Score

7^/10

Malware Config

Targets

- Target
  
  8df6a24fb549ca596f9924eb7421158a
- Size
  
  771KB
- MD5
  
  8df6a24fb549ca596f9924eb7421158a
- SHA1
  
  f11b33f4a26c15b52b0a6cb1d1b822def7924656
- SHA256
  
  fac408e41d63e355789e455419e03bd44b0fc3c173968f666e3fe264c5aca058
- SHA512
  
  1681313424dbccd9d041fa9aa4807d45798763d5f843c16b8fed75d7cd456475b40e82ccd10e74b26944f8baf9ba9ef07acde4af73d635250f2bb3783ffbe2f4
- SSDEEP
  
  12288:NzQUTpMHQ8EImo8gdTe2YZJPOb10VHmDXTuFaa2AtyGTKOF25ZoJJyhRge8BpH9r:9QUTUp8ghGXOb10hJaothZ2/T6FBBB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2