f5e6762c52dcdfe3b082587905dc50b42a313cdb7afb5873ad3650a58a387053 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8e67174689e4d67462f504590736aa6d
Size

385KB
Sample

240204-gtvtnabbe2
MD5

8e67174689e4d67462f504590736aa6d
SHA1

d5fc47ebe6043ebd7a491c7a876881e23d0867b2
SHA256

f5e6762c52dcdfe3b082587905dc50b42a313cdb7afb5873ad3650a58a387053
SHA512

ad2c915cb25aafcaa367c1e9b3dcda92b1031d0e5a3d9b9e27c5b226e3fdd35066f4d4f32ab781fe420cdf741f4b7ec676e7a56ec992afbb53e476b3a568a229
SSDEEP

12288:2VwSdJ2FeZ64QyeOmPShuIYYCysFGdDu/lP2B:2VwSr2FewyePa8KCyCGdDCQB

Score

7^/10

Malware Config

Targets

- Target
  
  8e67174689e4d67462f504590736aa6d
- Size
  
  385KB
- MD5
  
  8e67174689e4d67462f504590736aa6d
- SHA1
  
  d5fc47ebe6043ebd7a491c7a876881e23d0867b2
- SHA256
  
  f5e6762c52dcdfe3b082587905dc50b42a313cdb7afb5873ad3650a58a387053
- SHA512
  
  ad2c915cb25aafcaa367c1e9b3dcda92b1031d0e5a3d9b9e27c5b226e3fdd35066f4d4f32ab781fe420cdf741f4b7ec676e7a56ec992afbb53e476b3a568a229
- SSDEEP
  
  12288:2VwSdJ2FeZ64QyeOmPShuIYYCysFGdDu/lP2B:2VwSr2FewyePa8KCyCGdDCQB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2