69b9a78b0ca94a55b97b44af84b8eb47a1669a7ca29f626f38b1d5361c34ede5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02DB8FDA0F42DFF7EF9E2E6873B7AFD5.dll
Size

208KB
Sample

240305-zapgmshe95
MD5

02db8fda0f42dff7ef9e2e6873b7afd5
SHA1

eb4f50e2f9d0664e54882d2173f9cdf0e59b5e5b
SHA256

69b9a78b0ca94a55b97b44af84b8eb47a1669a7ca29f626f38b1d5361c34ede5
SHA512

c9b328b91aa3c3cc23bb6f734998820a95de797c5d33421415dbf1861d3b1dd63da7e0bf6f3a5fe1a501863d89191c30246067297286967d075e60dba0f117b8
SSDEEP

6144:b1TyRICfzZQVG5zLD45eEhIv5KTBIUXuTyEAVa:bQRvfzZQVCHD4kEW5KTC0u2E3

Score

8^/10

Malware Config

Targets

- Target
  
  02DB8FDA0F42DFF7EF9E2E6873B7AFD5.dll
- Size
  
  208KB
- MD5
  
  02db8fda0f42dff7ef9e2e6873b7afd5
- SHA1
  
  eb4f50e2f9d0664e54882d2173f9cdf0e59b5e5b
- SHA256
  
  69b9a78b0ca94a55b97b44af84b8eb47a1669a7ca29f626f38b1d5361c34ede5
- SHA512
  
  c9b328b91aa3c3cc23bb6f734998820a95de797c5d33421415dbf1861d3b1dd63da7e0bf6f3a5fe1a501863d89191c30246067297286967d075e60dba0f117b8
- SSDEEP
  
  6144:b1TyRICfzZQVG5zLD45eEhIv5KTBIUXuTyEAVa:bQRvfzZQVCHD4kEW5KTC0u2E3
Score

8^/10
- Blocklisted process makes network request
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2