9e9b564f58d8eabc82e5eb3c6bc5e50bd7b1f20982c04b3b71796dd94f958227 | Triage

Sharing

General

Target

a326b68cd2fe65d4afc8332cccbcebe8
Size

385KB
Sample

240225-hm1a8sec58
MD5

a326b68cd2fe65d4afc8332cccbcebe8
SHA1

011ecb4892200813d1d90c588956f564b595828f
SHA256

9e9b564f58d8eabc82e5eb3c6bc5e50bd7b1f20982c04b3b71796dd94f958227
SHA512

e7ea29043248a7bdd7c366fca8ee2d1833e80542f065d3cd943ccc07f6fff86b3a5492e3f763945617931cc6252cd2e76a957c629f330938b115ce45d4e75286
SSDEEP

12288:jZFit36GpgyCcdQ1WiD9CiE5TbR1BglCB:9FiqGOyY1D9CrbRvglCB

Score

7^/10

Malware Config

Targets

- Target
  
  a326b68cd2fe65d4afc8332cccbcebe8
- Size
  
  385KB
- MD5
  
  a326b68cd2fe65d4afc8332cccbcebe8
- SHA1
  
  011ecb4892200813d1d90c588956f564b595828f
- SHA256
  
  9e9b564f58d8eabc82e5eb3c6bc5e50bd7b1f20982c04b3b71796dd94f958227
- SHA512
  
  e7ea29043248a7bdd7c366fca8ee2d1833e80542f065d3cd943ccc07f6fff86b3a5492e3f763945617931cc6252cd2e76a957c629f330938b115ce45d4e75286
- SSDEEP
  
  12288:jZFit36GpgyCcdQ1WiD9CiE5TbR1BglCB:9FiqGOyY1D9CrbRvglCB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2