9d3e8576459a56805754aa2021a185e387b309555b6b786c4c5341b66d56d466 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d712393ae0f1d7c7f7478e1f244256ca
Size

385KB
Sample

240319-zhanfsfg7z
MD5

d712393ae0f1d7c7f7478e1f244256ca
SHA1

ab93429d4f5ea61068c69aeed44fabb5eb12fd12
SHA256

9d3e8576459a56805754aa2021a185e387b309555b6b786c4c5341b66d56d466
SHA512

0216bbaeb003c6d3df3baf954ef3b1d7be9747d732ebc24b341a911b433ea4b784cd1826fdcd2f1bf19eb217ae00976f25f3d204aa036cdf44223f3e813fcc38
SSDEEP

12288:Z0tGaRSmyBaKNmAfi8Eqfp16utmZaTd9bsG9ctAlB03xHNycsuB:Wz3azfljmZaTd9bsG9ctAlB03xHNycs0

Score

7^/10

Malware Config

Targets

- Target
  
  d712393ae0f1d7c7f7478e1f244256ca
- Size
  
  385KB
- MD5
  
  d712393ae0f1d7c7f7478e1f244256ca
- SHA1
  
  ab93429d4f5ea61068c69aeed44fabb5eb12fd12
- SHA256
  
  9d3e8576459a56805754aa2021a185e387b309555b6b786c4c5341b66d56d466
- SHA512
  
  0216bbaeb003c6d3df3baf954ef3b1d7be9747d732ebc24b341a911b433ea4b784cd1826fdcd2f1bf19eb217ae00976f25f3d204aa036cdf44223f3e813fcc38
- SSDEEP
  
  12288:Z0tGaRSmyBaKNmAfi8Eqfp16utmZaTd9bsG9ctAlB03xHNycsuB:Wz3azfljmZaTd9bsG9ctAlB03xHNycs0
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2