b67e5d40b9d3b5f544e0f18e66b695748c0c9609a04e68d497febcae9be89681 | Triage

Sharing

General

Target

a4020634f1e9f252f745242131ba48c4
Size

385KB
Sample

240225-rpshvaee2w
MD5

a4020634f1e9f252f745242131ba48c4
SHA1

e7ab976e530d59b5c518e729893a9dfb60b9599f
SHA256

b67e5d40b9d3b5f544e0f18e66b695748c0c9609a04e68d497febcae9be89681
SHA512

b2ba9739119096dcc850a7c79f292f9780197f3bf43e704ca3c42fae7de32b574a1f42ae47a519129bbcf94c54463d875ea5e5e233e292caabd182684bb99a9c
SSDEEP

6144:mE88ET//WD+k9vGVD0qEM9n3k+2tMoxBdcfh971SGt0gceHB:eTTHWDP9OVd9Uvmr1t+gpB

Score

7^/10

Malware Config

Targets

- Target
  
  a4020634f1e9f252f745242131ba48c4
- Size
  
  385KB
- MD5
  
  a4020634f1e9f252f745242131ba48c4
- SHA1
  
  e7ab976e530d59b5c518e729893a9dfb60b9599f
- SHA256
  
  b67e5d40b9d3b5f544e0f18e66b695748c0c9609a04e68d497febcae9be89681
- SHA512
  
  b2ba9739119096dcc850a7c79f292f9780197f3bf43e704ca3c42fae7de32b574a1f42ae47a519129bbcf94c54463d875ea5e5e233e292caabd182684bb99a9c
- SSDEEP
  
  6144:mE88ET//WD+k9vGVD0qEM9n3k+2tMoxBdcfh971SGt0gceHB:eTTHWDP9OVd9Uvmr1t+gpB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2