3e9e6ce1a10040b90d6cc34141d881c18b1a54662ea97ad9a5a64fc880aad897 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abbe0f7e6f39ea885fe4048d092a2b36
Size

771KB
Sample

240228-nal6qsab46
MD5

abbe0f7e6f39ea885fe4048d092a2b36
SHA1

365e00dc20de8a2a0cef92794228a8af466895e2
SHA256

3e9e6ce1a10040b90d6cc34141d881c18b1a54662ea97ad9a5a64fc880aad897
SHA512

9a283ecfc6a6575dc02209463c8b312fff12cf67b25b623637e2d76ad3cf1941de03ef675c88a1a2130297d6b6f9b45a747766ce176ea165bba23bc4d08bcc52
SSDEEP

12288:tysCd9/MkwdqHPal0sWYB9I1b10VHmDXTuFaa2AtyGTKOF25ZoJJyhRge8BpH9PT:tysCDvwuPKJJTmb10hJaothZ2/T6FBBB

Score

7^/10

Malware Config

Targets

- Target
  
  abbe0f7e6f39ea885fe4048d092a2b36
- Size
  
  771KB
- MD5
  
  abbe0f7e6f39ea885fe4048d092a2b36
- SHA1
  
  365e00dc20de8a2a0cef92794228a8af466895e2
- SHA256
  
  3e9e6ce1a10040b90d6cc34141d881c18b1a54662ea97ad9a5a64fc880aad897
- SHA512
  
  9a283ecfc6a6575dc02209463c8b312fff12cf67b25b623637e2d76ad3cf1941de03ef675c88a1a2130297d6b6f9b45a747766ce176ea165bba23bc4d08bcc52
- SSDEEP
  
  12288:tysCd9/MkwdqHPal0sWYB9I1b10VHmDXTuFaa2AtyGTKOF25ZoJJyhRge8BpH9PT:tysCDvwuPKJJTmb10hJaothZ2/T6FBBB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2