5e57cd75e1c5f9f62eccc6b9f81f8258f90b8c8938a0df96941d05226aad6c6f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8f147a4bef7353fb6239e5620d735907
Size

385KB
Sample

240204-nza5rsagbk
MD5

8f147a4bef7353fb6239e5620d735907
SHA1

baa254329f26b0fe39f2616c03b74af6f8e822c8
SHA256

5e57cd75e1c5f9f62eccc6b9f81f8258f90b8c8938a0df96941d05226aad6c6f
SHA512

148acb4ebb3f44d58711b757ce17a3ed53dc55acf8cde1ffe86372de04066589fd3174c0ed72885fe67e82e4b9f92a5a13b3dfe3b5ab5160e814d91c07f99cde
SSDEEP

6144:lli5WBqU3jP+yz7dxpyr+Kxw+ywZFChmFzrToN/O32ZozGUD+iJzYuRHB:G5aqU97dxpILx1TFCIFzk/Om2DwWB

Score

7^/10

Malware Config

Targets

- Target
  
  8f147a4bef7353fb6239e5620d735907
- Size
  
  385KB
- MD5
  
  8f147a4bef7353fb6239e5620d735907
- SHA1
  
  baa254329f26b0fe39f2616c03b74af6f8e822c8
- SHA256
  
  5e57cd75e1c5f9f62eccc6b9f81f8258f90b8c8938a0df96941d05226aad6c6f
- SHA512
  
  148acb4ebb3f44d58711b757ce17a3ed53dc55acf8cde1ffe86372de04066589fd3174c0ed72885fe67e82e4b9f92a5a13b3dfe3b5ab5160e814d91c07f99cde
- SSDEEP
  
  6144:lli5WBqU3jP+yz7dxpyr+Kxw+ywZFChmFzrToN/O32ZozGUD+iJzYuRHB:G5aqU97dxpILx1TFCIFzk/Om2DwWB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2