d5afa77613fb209d836f9d6a0fb8e9a61d3e73253b3b5e2a81a594cd6e1456c3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c2cae634dc97f2917e80ab5d07dd9cae
Size

385KB
Sample

240312-ja57dsbf3z
MD5

c2cae634dc97f2917e80ab5d07dd9cae
SHA1

b754537caa471589134c5c8cc5d12712dc0203b7
SHA256

d5afa77613fb209d836f9d6a0fb8e9a61d3e73253b3b5e2a81a594cd6e1456c3
SHA512

017e691419353626518cc471b6d7abe43e8038805c80fa5cb9a5bb44f175a62b9c796de7fdcf203bc6f4357cdeee9093f910f98d64b7886f2f17ebe66f9f7765
SSDEEP

12288:NGVK1ReOg7r5sSENVfMkLVC7xs3ixo/nCQB:QVQG79sSErMk07xs3i25B

Score

7^/10

Malware Config

Targets

- Target
  
  c2cae634dc97f2917e80ab5d07dd9cae
- Size
  
  385KB
- MD5
  
  c2cae634dc97f2917e80ab5d07dd9cae
- SHA1
  
  b754537caa471589134c5c8cc5d12712dc0203b7
- SHA256
  
  d5afa77613fb209d836f9d6a0fb8e9a61d3e73253b3b5e2a81a594cd6e1456c3
- SHA512
  
  017e691419353626518cc471b6d7abe43e8038805c80fa5cb9a5bb44f175a62b9c796de7fdcf203bc6f4357cdeee9093f910f98d64b7886f2f17ebe66f9f7765
- SSDEEP
  
  12288:NGVK1ReOg7r5sSENVfMkLVC7xs3ixo/nCQB:QVQG79sSErMk07xs3i25B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2