ec298fb63554fda962c5c45d53b5834b369ccce3857a1d9e51c39cd73e524c34 | Triage

Sharing

General

Target

8e168cfd0f93c0a3b91455e4a28c2a20
Size

385KB
Sample

240204-dwv1naadhl
MD5

8e168cfd0f93c0a3b91455e4a28c2a20
SHA1

5eb30b4f3831d9633cb7a7e181ae68b25c84ff54
SHA256

ec298fb63554fda962c5c45d53b5834b369ccce3857a1d9e51c39cd73e524c34
SHA512

ceeba9da5bcfecd9268dfe77ed309a358647035dca5ef1bd2aa781f025b1314d87125c050b80860ca9d47ec3902fbcff912ff09ba285490a1bdd2126b4c9b5d2
SSDEEP

12288:A38pDr6qtO7T/wP71zHYf7iBHbE+37GZZBB:AyP6qOHoPxaQbESoZBB

Score

7^/10

Malware Config

Targets

- Target
  
  8e168cfd0f93c0a3b91455e4a28c2a20
- Size
  
  385KB
- MD5
  
  8e168cfd0f93c0a3b91455e4a28c2a20
- SHA1
  
  5eb30b4f3831d9633cb7a7e181ae68b25c84ff54
- SHA256
  
  ec298fb63554fda962c5c45d53b5834b369ccce3857a1d9e51c39cd73e524c34
- SHA512
  
  ceeba9da5bcfecd9268dfe77ed309a358647035dca5ef1bd2aa781f025b1314d87125c050b80860ca9d47ec3902fbcff912ff09ba285490a1bdd2126b4c9b5d2
- SSDEEP
  
  12288:A38pDr6qtO7T/wP71zHYf7iBHbE+37GZZBB:AyP6qOHoPxaQbESoZBB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2