22e1ceb02a7e5a4157a8b84563a72240a8d0279d6c48599770e3918eba608b66 | Triage

Sharing

General

Target

c00ec202a7fa4fa12808b7f2958ddc95
Size

771KB
Sample

240311-g1cawseb2y
MD5

c00ec202a7fa4fa12808b7f2958ddc95
SHA1

ddc3121524b3dcee95ba3e0739f09a84a79e7852
SHA256

22e1ceb02a7e5a4157a8b84563a72240a8d0279d6c48599770e3918eba608b66
SHA512

f88abdb1576751e55f572b6ee1e9d3a69f2366b47787748f73c5d7fc9ed9f295836eba485e09d829a5ea49d15fe50e5bf14a764b313a34167c2e145dbcd55598
SSDEEP

12288:37Yd9rxf6HZrqR61PYrKyjazHMPzJLniYZ/C9OFEIif0F6rerfrEhU8zFVMB:37Yd9Nur/YmyjustvZWqEIz6qrfiTMB

Score

7^/10

Malware Config

Targets

- Target
  
  c00ec202a7fa4fa12808b7f2958ddc95
- Size
  
  771KB
- MD5
  
  c00ec202a7fa4fa12808b7f2958ddc95
- SHA1
  
  ddc3121524b3dcee95ba3e0739f09a84a79e7852
- SHA256
  
  22e1ceb02a7e5a4157a8b84563a72240a8d0279d6c48599770e3918eba608b66
- SHA512
  
  f88abdb1576751e55f572b6ee1e9d3a69f2366b47787748f73c5d7fc9ed9f295836eba485e09d829a5ea49d15fe50e5bf14a764b313a34167c2e145dbcd55598
- SSDEEP
  
  12288:37Yd9rxf6HZrqR61PYrKyjazHMPzJLniYZ/C9OFEIif0F6rerfrEhU8zFVMB:37Yd9Nur/YmyjustvZWqEIz6qrfiTMB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2