5598a9d3ee709ffa1e735fad60145b4ed3b64d2ff4f5dfe3bde3163233e7b4c6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b963d23b4611977b17d700c5dc0d8b44
Size

385KB
Sample

240307-w73hzsbe6v
MD5

b963d23b4611977b17d700c5dc0d8b44
SHA1

dda1dfd6ba72a9bdec606e5216e5cde4fcaff208
SHA256

5598a9d3ee709ffa1e735fad60145b4ed3b64d2ff4f5dfe3bde3163233e7b4c6
SHA512

6682b4a809c28f631a7bda9e74ae664ff784a3e90b33972af2af7bc9eaf81a14904870ebd78c7786d90dfbbd0848db8777c5ebd133fa1b3faf68c6409071b11e
SSDEEP

6144:Ir5irOp1W1FHTzEIyNDO3yyBeJZhqZUAaqhVgkUEMjlpBeSmqYaVKIj64qG47WKo:eZjNeSfg4875Q/9kuBOA/WVDaex+JB

Score

7^/10

Malware Config

Targets

- Target
  
  b963d23b4611977b17d700c5dc0d8b44
- Size
  
  385KB
- MD5
  
  b963d23b4611977b17d700c5dc0d8b44
- SHA1
  
  dda1dfd6ba72a9bdec606e5216e5cde4fcaff208
- SHA256
  
  5598a9d3ee709ffa1e735fad60145b4ed3b64d2ff4f5dfe3bde3163233e7b4c6
- SHA512
  
  6682b4a809c28f631a7bda9e74ae664ff784a3e90b33972af2af7bc9eaf81a14904870ebd78c7786d90dfbbd0848db8777c5ebd133fa1b3faf68c6409071b11e
- SSDEEP
  
  6144:Ir5irOp1W1FHTzEIyNDO3yyBeJZhqZUAaqhVgkUEMjlpBeSmqYaVKIj64qG47WKo:eZjNeSfg4875Q/9kuBOA/WVDaex+JB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2