2564bce20fd30658154b24591cc9263b11cf41d9b4cd29886401daf9e750a0e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cacd270b3701ec0aee4b9eb954f31edb
Size

771KB
Sample

240315-hz1sjaaf7y
MD5

cacd270b3701ec0aee4b9eb954f31edb
SHA1

4b27f040b0e5ba8b47f5aee9b2bb4c034f75f801
SHA256

2564bce20fd30658154b24591cc9263b11cf41d9b4cd29886401daf9e750a0e7
SHA512

2e2579329f1119ffcb4f814b6e8eb12fb7da482f9ba9d05dc64de01a0b9ae70a3452a180f5256dad983e235eb67ab30d1bb42edb94f302169c78de4a570f9aa6
SSDEEP

12288:YOO1xmSUngeAM8APoHJ7zWO1nMkfuDXb10VHmDXTuFaa2AtyGTKOF25ZoJJyhRgT:DOOJgeuFzdxcDXb10hJaothZ2/T6FBBB

Score

7^/10

Malware Config

Targets

- Target
  
  cacd270b3701ec0aee4b9eb954f31edb
- Size
  
  771KB
- MD5
  
  cacd270b3701ec0aee4b9eb954f31edb
- SHA1
  
  4b27f040b0e5ba8b47f5aee9b2bb4c034f75f801
- SHA256
  
  2564bce20fd30658154b24591cc9263b11cf41d9b4cd29886401daf9e750a0e7
- SHA512
  
  2e2579329f1119ffcb4f814b6e8eb12fb7da482f9ba9d05dc64de01a0b9ae70a3452a180f5256dad983e235eb67ab30d1bb42edb94f302169c78de4a570f9aa6
- SSDEEP
  
  12288:YOO1xmSUngeAM8APoHJ7zWO1nMkfuDXb10VHmDXTuFaa2AtyGTKOF25ZoJJyhRgT:DOOJgeuFzdxcDXb10hJaothZ2/T6FBBB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2