32eb2e3a1ec6b081d9c6fcfa52caf41e81b0b55dd7372d0caa39ecfd42f837e2 | Triage

Sharing

General

Target

df3b9490e67ed0bc6d3b2dc7dfeeb06b
Size

385KB
Sample

240326-p87e1adg5z
MD5

df3b9490e67ed0bc6d3b2dc7dfeeb06b
SHA1

a7d6ef316f36b2752d74c34323b70e44fafadc78
SHA256

32eb2e3a1ec6b081d9c6fcfa52caf41e81b0b55dd7372d0caa39ecfd42f837e2
SHA512

3622e010fbe80e947678e415e61f022925eebf5392cc818f1a47604f2075432ebcc4fa784d7c9d2f1367d6b7f54b61cb6c94b70bf1b91aee1088a4c77da2ebcd
SSDEEP

12288:NdCwIxTCG/XBV5rKQroUIxrNW9TeHONzC9s/B:No7ZXB/KQroUI6TecR/B

Score

7^/10

Malware Config

Targets

- Target
  
  df3b9490e67ed0bc6d3b2dc7dfeeb06b
- Size
  
  385KB
- MD5
  
  df3b9490e67ed0bc6d3b2dc7dfeeb06b
- SHA1
  
  a7d6ef316f36b2752d74c34323b70e44fafadc78
- SHA256
  
  32eb2e3a1ec6b081d9c6fcfa52caf41e81b0b55dd7372d0caa39ecfd42f837e2
- SHA512
  
  3622e010fbe80e947678e415e61f022925eebf5392cc818f1a47604f2075432ebcc4fa784d7c9d2f1367d6b7f54b61cb6c94b70bf1b91aee1088a4c77da2ebcd
- SSDEEP
  
  12288:NdCwIxTCG/XBV5rKQroUIxrNW9TeHONzC9s/B:No7ZXB/KQroUI6TecR/B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2