2161061408f39b8e2005a5599ebb8b6679abe7c12752dc9270612ea7ae6301bf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d618cd7a88fb17a2fcd3a5c26b4fcd60
Size

385KB
Sample

240319-phm9facf7s
MD5

d618cd7a88fb17a2fcd3a5c26b4fcd60
SHA1

86641332c8bb37263f69ff1c0897092ab0c3b17d
SHA256

2161061408f39b8e2005a5599ebb8b6679abe7c12752dc9270612ea7ae6301bf
SHA512

352ff3ad5e3cc00264ca80defa7bdb694c36d2041be44020c5708bb96fa7ea835fd42ca485319da1cb7a9502a05ac603e9c730455f79ecfa1f4923242d8bee59
SSDEEP

6144:G/mM8s+RDiw6ICBg7ncEMbGelcaFpYSeTxHjG8ckXGAevr06KshSw07UDmbtUmB:G55g7ncEMyeiaFpYB6k6TzK3UaNB

Score

7^/10

Malware Config

Targets

- Target
  
  d618cd7a88fb17a2fcd3a5c26b4fcd60
- Size
  
  385KB
- MD5
  
  d618cd7a88fb17a2fcd3a5c26b4fcd60
- SHA1
  
  86641332c8bb37263f69ff1c0897092ab0c3b17d
- SHA256
  
  2161061408f39b8e2005a5599ebb8b6679abe7c12752dc9270612ea7ae6301bf
- SHA512
  
  352ff3ad5e3cc00264ca80defa7bdb694c36d2041be44020c5708bb96fa7ea835fd42ca485319da1cb7a9502a05ac603e9c730455f79ecfa1f4923242d8bee59
- SSDEEP
  
  6144:G/mM8s+RDiw6ICBg7ncEMbGelcaFpYSeTxHjG8ckXGAevr06KshSw07UDmbtUmB:G55g7ncEMyeiaFpYB6k6TzK3UaNB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2