15eaacb7e183e8c22dfdbe8e7bd7a0268134014edc11a5dc728743372ba835d8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df8e2d0e239de2ea53b7b9b5ba0391c6
Size

3.9MB
Sample

240326-tfstcsgg5t
MD5

df8e2d0e239de2ea53b7b9b5ba0391c6
SHA1

3377e77c9079b5e0fdac538003c3db1ca188813f
SHA256

15eaacb7e183e8c22dfdbe8e7bd7a0268134014edc11a5dc728743372ba835d8
SHA512

1a2811a3d01b71651fc9367fdb9deadc38652cb2a5c9688a7a3580ca7f6ce0a1be01676994887f08944e6e4d5a1c6c836d239eae3b7f40be9d243ce31fb73f23
SSDEEP

98304:Q4fYxs4KBodK8ab+2kqV5Blx9hLkTb+2kqV5h:Q4fYxmodK8ab+2/V5BlhLkTb+2/V5h

Score

7^/10

Malware Config

Targets

- Target
  
  df8e2d0e239de2ea53b7b9b5ba0391c6
- Size
  
  3.9MB
- MD5
  
  df8e2d0e239de2ea53b7b9b5ba0391c6
- SHA1
  
  3377e77c9079b5e0fdac538003c3db1ca188813f
- SHA256
  
  15eaacb7e183e8c22dfdbe8e7bd7a0268134014edc11a5dc728743372ba835d8
- SHA512
  
  1a2811a3d01b71651fc9367fdb9deadc38652cb2a5c9688a7a3580ca7f6ce0a1be01676994887f08944e6e4d5a1c6c836d239eae3b7f40be9d243ce31fb73f23
- SSDEEP
  
  98304:Q4fYxs4KBodK8ab+2kqV5Blx9hLkTb+2kqV5h:Q4fYxmodK8ab+2/V5BlhLkTb+2/V5h
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2