fd493c783543c28e5744915b6c8603a38dea4a22bde1ccbfdb9ef20f094626b5 | Triage

Resubmissions

05-03-2024 20:01

240305-yr1essgh93 8

05-03-2024 19:59

240305-yqdveafh9v 3

05-03-2024 18:50

240305-xg69xsec3s 3

Sharing

General

Target

MDPatchv410fix.exe
Size

58KB
Sample

240305-yr1essgh93
MD5

aa4aa3ba54ef55906593bdb94d99d34d
SHA1

3f3fcfbdf5c817aa4eac7c4b6ebb4c9100933ca3
SHA256

fd493c783543c28e5744915b6c8603a38dea4a22bde1ccbfdb9ef20f094626b5
SHA512

73b045889cba2d3dba7a25e9c5884537cfa7ddf1e663ef6c6ba44fec5fea304bd3837b2830b43204120d9da1083a2cabff229780e07ade94b06d5d53e8b0fc82
SSDEEP

768:vVNYvDL5aqbo/pNgV/XY6CozORpxXiz9O6fyGg+qZSZcvsBlXB7T45Uh3B10:viLUqbkvgVWrTyzC++jUrx7Th1

Score

8^/10

Malware Config

Targets

- Target
  
  MDPatchv410fix.exe
- Size
  
  58KB
- MD5
  
  aa4aa3ba54ef55906593bdb94d99d34d
- SHA1
  
  3f3fcfbdf5c817aa4eac7c4b6ebb4c9100933ca3
- SHA256
  
  fd493c783543c28e5744915b6c8603a38dea4a22bde1ccbfdb9ef20f094626b5
- SHA512
  
  73b045889cba2d3dba7a25e9c5884537cfa7ddf1e663ef6c6ba44fec5fea304bd3837b2830b43204120d9da1083a2cabff229780e07ade94b06d5d53e8b0fc82
- SSDEEP
  
  768:vVNYvDL5aqbo/pNgV/XY6CozORpxXiz9O6fyGg+qZSZcvsBlXB7T45Uh3B10:viLUqbkvgVWrTyzC++jUrx7Th1
Score

8^/10
- Downloads MZ/PE file
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2