9a914a5b408776dd1e8f9bf6d7fe84f79fdbebd9a7d7a44e539e367833236042 | Triage

Sharing

General

Target

Nameware_Gen.rar
Size

135KB
Sample

240305-ptfnqsff58
MD5

0d6baf3ba17b6ce87384cee4de4195b7
SHA1

370b64ba14275db0c71756984490fab192760fe4
SHA256

9a914a5b408776dd1e8f9bf6d7fe84f79fdbebd9a7d7a44e539e367833236042
SHA512

61c4bd59b5ea2584402af903798d1679ceb4bee5fbd3c91693d91ea89636c0e112bb62e40fc71a54c6d1474df1e02e05e470a028492cb7015a1a3de74f3e28e5
SSDEEP

3072:QyVqMIyOsrolF3G6ffuc/Lh+BJsWy9ZALQktHfhpU:WyOsMF3G2WUNgOWuyLQkJfh2

Score

6^/10

Malware Config

Targets

- Target
  
  gen/Nameware Free Gen.bat
- Size
  
  35KB
- MD5
  
  b1e410d058e2461102b6855520e80a94
- SHA1
  
  eeda68322cedb7197dd341785290807b8b107620
- SHA256
  
  c4ded6b3e0af42138bfea1cbe8865a6b1d6604b64f4915ab7bce9aaeec8bef0e
- SHA512
  
  524cc8f0fe848240ef4bb3cdf1f033b62a4ee9b52b1dc6c15109ecaf96dd6d8f0c59565cc543b441f6e50bca9678e90f0ee204a324766b59c5da67126e4c8cec
- SSDEEP
  
  768:WQZlr38u/LOzTWyv+C42E42aSCghIcjH3oyjoyhPekLLokLL76VkLLHwkLDkLP9J:WQZlT8GLOzTWyv+C42E42aSCghIcjH3e
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2