2568a1d3c40aa2e0157895e46e6208f55df230e57ec45005bca18ac06165eeec | Triage

Sharing

General

Target

a1a19f0c1203aef7eb654b48345fc3a2
Size

385KB
Sample

240224-mfbfrahf9x
MD5

a1a19f0c1203aef7eb654b48345fc3a2
SHA1

28cd839d07d80cced35f7d482f30d0f04ab05112
SHA256

2568a1d3c40aa2e0157895e46e6208f55df230e57ec45005bca18ac06165eeec
SHA512

48b1fe2894175a37fbb6c86703d09b2594648870cc99443a7c8f11dca60eb323867d32b95097d9da64c34370dc329b7b89f9442ac5d37b7fda9555ee252fc17b
SSDEEP

6144:3kWEWNkcxxBP7V7G6H4UFi8xYw9811tBANXujEGTFJlUTYB:HEyNxBjVq6H9Hxz981BEC/luYB

Score

7^/10

Malware Config

Targets

- Target
  
  a1a19f0c1203aef7eb654b48345fc3a2
- Size
  
  385KB
- MD5
  
  a1a19f0c1203aef7eb654b48345fc3a2
- SHA1
  
  28cd839d07d80cced35f7d482f30d0f04ab05112
- SHA256
  
  2568a1d3c40aa2e0157895e46e6208f55df230e57ec45005bca18ac06165eeec
- SHA512
  
  48b1fe2894175a37fbb6c86703d09b2594648870cc99443a7c8f11dca60eb323867d32b95097d9da64c34370dc329b7b89f9442ac5d37b7fda9555ee252fc17b
- SSDEEP
  
  6144:3kWEWNkcxxBP7V7G6H4UFi8xYw9811tBANXujEGTFJlUTYB:HEyNxBjVq6H9Hxz981BEC/luYB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2