3d2e30dde4841996188ea62b87434b53de52b737567c9fd3832e9781aab06553 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e061691f0dbcc9fde5beaf64f210f70c
Size

385KB
Sample

240327-a8bwrsbc4s
MD5

e061691f0dbcc9fde5beaf64f210f70c
SHA1

8c6c087f3bcfa83ac7f0e6f770f6df4b1fafde16
SHA256

3d2e30dde4841996188ea62b87434b53de52b737567c9fd3832e9781aab06553
SHA512

24195e2b03b4c840edf0a54b3c9f13e038bf2cf6995f723dda92539130a9f1193533ead99bd485ef2705ad73d1c084e3185f62377895104c4f44994ebf7a5979
SSDEEP

6144:LLTK+k2lqi39drRCvxlLZ3mrL93I/adApyBDDUKoN0D+lqkIbhI4R6eLXOxQmJ2x:L/k3H53mG/aupUDUKohUfRxXOx/QB

Score

7^/10

Malware Config

Targets

- Target
  
  e061691f0dbcc9fde5beaf64f210f70c
- Size
  
  385KB
- MD5
  
  e061691f0dbcc9fde5beaf64f210f70c
- SHA1
  
  8c6c087f3bcfa83ac7f0e6f770f6df4b1fafde16
- SHA256
  
  3d2e30dde4841996188ea62b87434b53de52b737567c9fd3832e9781aab06553
- SHA512
  
  24195e2b03b4c840edf0a54b3c9f13e038bf2cf6995f723dda92539130a9f1193533ead99bd485ef2705ad73d1c084e3185f62377895104c4f44994ebf7a5979
- SSDEEP
  
  6144:LLTK+k2lqi39drRCvxlLZ3mrL93I/adApyBDDUKoN0D+lqkIbhI4R6eLXOxQmJ2x:L/k3H53mG/aupUDUKohUfRxXOx/QB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2