f61a5d7fda536edd2e42d8b3ce312ae40f7b6601c024734401e857ed7a80bae0 | Triage

Sharing

General

Target

c2d98bd69ffad7dad19a57f8ae74bfd7
Size

907KB
Sample

240312-jskcmsea56
MD5

c2d98bd69ffad7dad19a57f8ae74bfd7
SHA1

32335c12c61c779f2f10d766c03bf45873983655
SHA256

f61a5d7fda536edd2e42d8b3ce312ae40f7b6601c024734401e857ed7a80bae0
SHA512

e69bca1e5ce95ba63bf3b717effe9f03c0be308a21ac8b850613e151f05cd02620aec861e41a0b8da0f8ca788602f5a74d94d56097397a71b3106a312211ea76
SSDEEP

12288:pycG0+muTTRWAKtAhmhPQlhgxyUre2E7wV9ZXpsA7bZIdWjVDa/ZS1:p20WfRWGEPQlzUC2E81KA7lIdUa/ZS1

Score

7^/10

Malware Config

Targets

- Target
  
  c2d98bd69ffad7dad19a57f8ae74bfd7
- Size
  
  907KB
- MD5
  
  c2d98bd69ffad7dad19a57f8ae74bfd7
- SHA1
  
  32335c12c61c779f2f10d766c03bf45873983655
- SHA256
  
  f61a5d7fda536edd2e42d8b3ce312ae40f7b6601c024734401e857ed7a80bae0
- SHA512
  
  e69bca1e5ce95ba63bf3b717effe9f03c0be308a21ac8b850613e151f05cd02620aec861e41a0b8da0f8ca788602f5a74d94d56097397a71b3106a312211ea76
- SSDEEP
  
  12288:pycG0+muTTRWAKtAhmhPQlhgxyUre2E7wV9ZXpsA7bZIdWjVDa/ZS1:p20WfRWGEPQlzUC2E81KA7lIdUa/ZS1
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2