d49a9b5f21e42dbf5b58e6c60099c088bf295889cddc05ade4ce3a6cef1e9d20 | Triage

Sharing

General

Target

bc95e1fef103e3eee1d43c516fe30578
Size

385KB
Sample

240309-xw2yragd6s
MD5

bc95e1fef103e3eee1d43c516fe30578
SHA1

1ff54e81615509b1f844c5d7ab404d28cd872f0b
SHA256

d49a9b5f21e42dbf5b58e6c60099c088bf295889cddc05ade4ce3a6cef1e9d20
SHA512

f30abafae64e279ec19fa28315d310d7525219238586c8a97eb92810f15e8dd94f1200189a9212e5a6f446d3620ea6ca88ef0ea659c4905087587b4bd273564d
SSDEEP

6144:CUTIco72PeMXyrCTj7HAJ7ntBCSyq1h5b5byRy4k4NmxROqVczO9ieLUB:gj3MXnTj7gZnt/PBZyRyj3ROqVkfbB

Score

7^/10

Malware Config

Targets

- Target
  
  bc95e1fef103e3eee1d43c516fe30578
- Size
  
  385KB
- MD5
  
  bc95e1fef103e3eee1d43c516fe30578
- SHA1
  
  1ff54e81615509b1f844c5d7ab404d28cd872f0b
- SHA256
  
  d49a9b5f21e42dbf5b58e6c60099c088bf295889cddc05ade4ce3a6cef1e9d20
- SHA512
  
  f30abafae64e279ec19fa28315d310d7525219238586c8a97eb92810f15e8dd94f1200189a9212e5a6f446d3620ea6ca88ef0ea659c4905087587b4bd273564d
- SSDEEP
  
  6144:CUTIco72PeMXyrCTj7HAJ7ntBCSyq1h5b5byRy4k4NmxROqVczO9ieLUB:gj3MXnTj7gZnt/PBZyRyj3ROqVkfbB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2