e9158e8f12f9e75dcfb78474196cc9eee11702e562c07c1ebea1b1cfadea057c | Triage

Sharing

General

Target

ba58ea6b373dd0bc59026912d4b45209
Size

385KB
Sample

240308-dgx7gadg29
MD5

ba58ea6b373dd0bc59026912d4b45209
SHA1

6e7428beb862138e6f02490e82b3ab4439fa46aa
SHA256

e9158e8f12f9e75dcfb78474196cc9eee11702e562c07c1ebea1b1cfadea057c
SHA512

34e59601a3312fc730195434469620fc9359e773de3176f6cf471d3b4468ca29a1472458df493fddb6abb8d57c15b84c2b6d3ed6cd429816496b6269f5908da8
SSDEEP

12288:Zyx/ltGltkfWSSAFtXDpsN/5GGsbk7zSVEwE0WGNbms02fnHM4zmzptXtd0kZwHq:gx/ltGlt2W8FtXDpsN/5psqzIEwE05Fi

Score

7^/10

Malware Config

Targets

- Target
  
  ba58ea6b373dd0bc59026912d4b45209
- Size
  
  385KB
- MD5
  
  ba58ea6b373dd0bc59026912d4b45209
- SHA1
  
  6e7428beb862138e6f02490e82b3ab4439fa46aa
- SHA256
  
  e9158e8f12f9e75dcfb78474196cc9eee11702e562c07c1ebea1b1cfadea057c
- SHA512
  
  34e59601a3312fc730195434469620fc9359e773de3176f6cf471d3b4468ca29a1472458df493fddb6abb8d57c15b84c2b6d3ed6cd429816496b6269f5908da8
- SSDEEP
  
  12288:Zyx/ltGltkfWSSAFtXDpsN/5GGsbk7zSVEwE0WGNbms02fnHM4zmzptXtd0kZwHq:gx/ltGlt2W8FtXDpsN/5psqzIEwE05Fi
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2