aeeddf379c019468a7a6f6ce0c8e3ba68d82030206fd87935b56aa6bf214ddaf | Triage

Sharing

General

Target

c54a2ba117db5bb16c0f58f28a5351a9
Size

385KB
Sample

240313-h1vynshd32
MD5

c54a2ba117db5bb16c0f58f28a5351a9
SHA1

949c3ec60e47d6177cbd5dcca878dbbe52818e52
SHA256

aeeddf379c019468a7a6f6ce0c8e3ba68d82030206fd87935b56aa6bf214ddaf
SHA512

360d159733ec0c9b4fefb0dd9d353b159906a36b7fa7da6441ea1eda6041f7ea6fbb0f8ba2d922fef36ea3f465f655fb7297aff43ef8d05259ff3237a05c3352
SSDEEP

12288:bBVMJzFiSnDe26fmebwV0pdKXai2FGOwB:dkFike2LYwVk03pB

Score

7^/10

Malware Config

Targets

- Target
  
  c54a2ba117db5bb16c0f58f28a5351a9
- Size
  
  385KB
- MD5
  
  c54a2ba117db5bb16c0f58f28a5351a9
- SHA1
  
  949c3ec60e47d6177cbd5dcca878dbbe52818e52
- SHA256
  
  aeeddf379c019468a7a6f6ce0c8e3ba68d82030206fd87935b56aa6bf214ddaf
- SHA512
  
  360d159733ec0c9b4fefb0dd9d353b159906a36b7fa7da6441ea1eda6041f7ea6fbb0f8ba2d922fef36ea3f465f655fb7297aff43ef8d05259ff3237a05c3352
- SSDEEP
  
  12288:bBVMJzFiSnDe26fmebwV0pdKXai2FGOwB:dkFike2LYwVk03pB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2