46f5c8193c48a88e3852a85a3a6a22a178f593b62e9ad955f3fbc5f5bfbccdab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ropro-patcher.exe
Size

5.2MB
Sample

240311-r61wjshe58
MD5

a45a9b8f355e4eba9bb96171f572b3ea
SHA1

87a8a3acad2b65db9e5ef978d795f4f5e3c89ea5
SHA256

46f5c8193c48a88e3852a85a3a6a22a178f593b62e9ad955f3fbc5f5bfbccdab
SHA512

5afa6388c7d1019eb713efaf4e0daf275e65553152cdab8b06ad253278733e7b1b7a84a99cd059c0cde3ed7d20bf9fe5c7eb3bae1cdc403c7f4b02ff1d933d1c
SSDEEP

49152:4ksMKU1of3gRlm2enekEWacjeQrLBNCF2Uw5qfzWfE1KlWNz3005xjYmGklytaj/:4id30+nGHHeecFTZOZaG/L1l3QdQE

Score

6^/10

Malware Config

Targets

- Target
  
  ropro-patcher.exe
- Size
  
  5.2MB
- MD5
  
  a45a9b8f355e4eba9bb96171f572b3ea
- SHA1
  
  87a8a3acad2b65db9e5ef978d795f4f5e3c89ea5
- SHA256
  
  46f5c8193c48a88e3852a85a3a6a22a178f593b62e9ad955f3fbc5f5bfbccdab
- SHA512
  
  5afa6388c7d1019eb713efaf4e0daf275e65553152cdab8b06ad253278733e7b1b7a84a99cd059c0cde3ed7d20bf9fe5c7eb3bae1cdc403c7f4b02ff1d933d1c
- SSDEEP
  
  49152:4ksMKU1of3gRlm2enekEWacjeQrLBNCF2Uw5qfzWfE1KlWNz3005xjYmGklytaj/:4id30+nGHHeecFTZOZaG/L1l3QdQE
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2