205eb464cc615958fc4e1eff65b3b6c5599a2afcc0f4636833029901fa493bb4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e14f8de13cdcb5a1f1098cde664399f6
Size

385KB
Sample

240327-k74v9scb7v
MD5

e14f8de13cdcb5a1f1098cde664399f6
SHA1

11778bbc50c1867603ce84f3e8f18ee62ca7a772
SHA256

205eb464cc615958fc4e1eff65b3b6c5599a2afcc0f4636833029901fa493bb4
SHA512

db30a578fc19267a51b3666a449e3e7fc3b9a6eefc77e3fdcc4f5b56c2dce24d45fc96dc6106c26e81ccdd30d4b2ef795cadcb64808e5baf7366d48966196c6b
SSDEEP

6144:qnkzt7d7bIJWLyNMFPWWS+1q+hUA2bPttyjZY/1i6d+HB:TtJ7UAVBS+1zhUxtyjZY/1UHB

Score

7^/10

Malware Config

Targets

- Target
  
  e14f8de13cdcb5a1f1098cde664399f6
- Size
  
  385KB
- MD5
  
  e14f8de13cdcb5a1f1098cde664399f6
- SHA1
  
  11778bbc50c1867603ce84f3e8f18ee62ca7a772
- SHA256
  
  205eb464cc615958fc4e1eff65b3b6c5599a2afcc0f4636833029901fa493bb4
- SHA512
  
  db30a578fc19267a51b3666a449e3e7fc3b9a6eefc77e3fdcc4f5b56c2dce24d45fc96dc6106c26e81ccdd30d4b2ef795cadcb64808e5baf7366d48966196c6b
- SSDEEP
  
  6144:qnkzt7d7bIJWLyNMFPWWS+1q+hUA2bPttyjZY/1i6d+HB:TtJ7UAVBS+1zhUxtyjZY/1UHB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2