ba2aac867b7f35f0ca0438d85a34ea5e800cd3128bb45c0b58491e4b6f3c2cd2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c0e59159c2aa58d6e149ab155cf349e9
Size

907KB
Sample

240311-sf6vjsdg5t
MD5

c0e59159c2aa58d6e149ab155cf349e9
SHA1

20d553d38668eccae8d3c33a92cd1f60871df5b9
SHA256

ba2aac867b7f35f0ca0438d85a34ea5e800cd3128bb45c0b58491e4b6f3c2cd2
SHA512

0b01f0bdeaf367778c5ab69c99cc130a9f4c5842edc0319ad93b999714042b9744c73d4caf21a686fb3757c4ae8771473adbaeccf787fb2c8c525753201b3f36
SSDEEP

12288:/R9PS375xatVDPzXDuqpMt3pBk4rIrfH8ktPOfU07ll2NA4BYKSjVDa/ZS1:/R9PS3VCbzhMnikIrfHYlZlr4B+a/ZS1

Score

7^/10

Malware Config

Targets

- Target
  
  c0e59159c2aa58d6e149ab155cf349e9
- Size
  
  907KB
- MD5
  
  c0e59159c2aa58d6e149ab155cf349e9
- SHA1
  
  20d553d38668eccae8d3c33a92cd1f60871df5b9
- SHA256
  
  ba2aac867b7f35f0ca0438d85a34ea5e800cd3128bb45c0b58491e4b6f3c2cd2
- SHA512
  
  0b01f0bdeaf367778c5ab69c99cc130a9f4c5842edc0319ad93b999714042b9744c73d4caf21a686fb3757c4ae8771473adbaeccf787fb2c8c525753201b3f36
- SSDEEP
  
  12288:/R9PS375xatVDPzXDuqpMt3pBk4rIrfH8ktPOfU07ll2NA4BYKSjVDa/ZS1:/R9PS3VCbzhMnikIrfHYlZlr4B+a/ZS1
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2