4e07d6d2f248465467e68f76908ac82cdc396b990f8b69fef32ba92e75699b49 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bfa9d444e3885273df90b57adb2e085e
Size

385KB
Sample

240311-dgjn3sba7z
MD5

bfa9d444e3885273df90b57adb2e085e
SHA1

2fc48e027c6ba060302cb279e75bd084573c0271
SHA256

4e07d6d2f248465467e68f76908ac82cdc396b990f8b69fef32ba92e75699b49
SHA512

b4e133040b1f1adb3338cc909a6f07732d82291e170102aced7e41b2dd88c4c06211cea2f1ccd7c048100d9da029a80069910679fef508e7bc95ecaa4aba43e8
SSDEEP

12288:+g/j03H8cTOfpL/uZUJZl2CxcYoowq7Jmw5jKqBrB:Bj4TOfpLQUjlLBwq7JmwBKqBrB

Score

7^/10

Malware Config

Targets

- Target
  
  bfa9d444e3885273df90b57adb2e085e
- Size
  
  385KB
- MD5
  
  bfa9d444e3885273df90b57adb2e085e
- SHA1
  
  2fc48e027c6ba060302cb279e75bd084573c0271
- SHA256
  
  4e07d6d2f248465467e68f76908ac82cdc396b990f8b69fef32ba92e75699b49
- SHA512
  
  b4e133040b1f1adb3338cc909a6f07732d82291e170102aced7e41b2dd88c4c06211cea2f1ccd7c048100d9da029a80069910679fef508e7bc95ecaa4aba43e8
- SSDEEP
  
  12288:+g/j03H8cTOfpL/uZUJZl2CxcYoowq7Jmw5jKqBrB:Bj4TOfpLQUjlLBwq7JmwBKqBrB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2