2c95de9e6b46f2382560a931bf88541ed8ef136f2f4d07456120c122a336a3ed | Triage

Sharing

General

Target

b4992489e838aad870f8e50f6b4f8167
Size

385KB
Sample

240305-nmp36aee57
MD5

b4992489e838aad870f8e50f6b4f8167
SHA1

4188bceee5bb7b97487cd0ffea27f1f0ef7fbd04
SHA256

2c95de9e6b46f2382560a931bf88541ed8ef136f2f4d07456120c122a336a3ed
SHA512

990df0fc2fe022cd8722ca7378bcfc0ea1871980b2bf68a8514edc9eab41c4cfd3c51b43bbd3e3188b7e877261beb2442faeb8a94eb0d207fd47a896993f0044
SSDEEP

12288:T6O2u5ax+a5XkdvlWVkaYC3kMUjCCU40owgPUgq8Ul2B:uhhXC0Cax374QgsgfO2B

Score

7^/10

Malware Config

Targets

- Target
  
  b4992489e838aad870f8e50f6b4f8167
- Size
  
  385KB
- MD5
  
  b4992489e838aad870f8e50f6b4f8167
- SHA1
  
  4188bceee5bb7b97487cd0ffea27f1f0ef7fbd04
- SHA256
  
  2c95de9e6b46f2382560a931bf88541ed8ef136f2f4d07456120c122a336a3ed
- SHA512
  
  990df0fc2fe022cd8722ca7378bcfc0ea1871980b2bf68a8514edc9eab41c4cfd3c51b43bbd3e3188b7e877261beb2442faeb8a94eb0d207fd47a896993f0044
- SSDEEP
  
  12288:T6O2u5ax+a5XkdvlWVkaYC3kMUjCCU40owgPUgq8Ul2B:uhhXC0Cax374QgsgfO2B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2