b19d65d1442611947f8ba924fc275f67a073ea2e5729a7b4509a2cdc791d4c85 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd1930135c32b584766495dbe5a1921b
Size

907KB
Sample

240309-3lf67aea85
MD5

bd1930135c32b584766495dbe5a1921b
SHA1

42f3bef4cf4b625935f743100620a5df688870f1
SHA256

b19d65d1442611947f8ba924fc275f67a073ea2e5729a7b4509a2cdc791d4c85
SHA512

da15b1b9169a703cbbe1306517846dd858a4c34022738edc70c3daf984b4570f7438c306c6651bccc1d6789f3f3b6673f25e66a8bb7573a37323f7e6048f9ca5
SSDEEP

12288:X4o2KdclDjZrpFKaQ43keYi6n2dOXNityIAgK5GyjVDa/ZS1:oo2Q+vZrOaQykrinVLwa/ZS1

Score

7^/10

Malware Config

Targets

- Target
  
  bd1930135c32b584766495dbe5a1921b
- Size
  
  907KB
- MD5
  
  bd1930135c32b584766495dbe5a1921b
- SHA1
  
  42f3bef4cf4b625935f743100620a5df688870f1
- SHA256
  
  b19d65d1442611947f8ba924fc275f67a073ea2e5729a7b4509a2cdc791d4c85
- SHA512
  
  da15b1b9169a703cbbe1306517846dd858a4c34022738edc70c3daf984b4570f7438c306c6651bccc1d6789f3f3b6673f25e66a8bb7573a37323f7e6048f9ca5
- SSDEEP
  
  12288:X4o2KdclDjZrpFKaQ43keYi6n2dOXNityIAgK5GyjVDa/ZS1:oo2Q+vZrOaQykrinVLwa/ZS1
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2