395ec56dff1b1dfe726b0d32af5436034ce71ecb302a3e81e47d8cae7c85fbe9 | Triage

Sharing

General

Target

Vulkan
Size

237KB
Sample

240405-vkb7vaaa73
MD5

928a433ee89489b5937066a2f56006d3
SHA1

d759db2b91a9cc7e59eeeca92ed46d72f4a60ab8
SHA256

395ec56dff1b1dfe726b0d32af5436034ce71ecb302a3e81e47d8cae7c85fbe9
SHA512

4277fd75fd93fc9a5e462021d6b10aed0520ce37970fa49641691bbb6813bcbbde0df55441354d5dec5eb94d6406dfc7e66f0e719b10506b56866495797c3788
SSDEEP

6144:RDuqJ3f+sVSgE29xxspm0n1vuz3q9avZJT3CqbMrhryfQNRPaCieMjAkvCJv1Vir:hf+sVSgE29xxspm0n1vuz3q9avZJT3CA

Score

7^/10

Malware Config

Targets

- Target
  
  Vulkan
- Size
  
  237KB
- MD5
  
  928a433ee89489b5937066a2f56006d3
- SHA1
  
  d759db2b91a9cc7e59eeeca92ed46d72f4a60ab8
- SHA256
  
  395ec56dff1b1dfe726b0d32af5436034ce71ecb302a3e81e47d8cae7c85fbe9
- SHA512
  
  4277fd75fd93fc9a5e462021d6b10aed0520ce37970fa49641691bbb6813bcbbde0df55441354d5dec5eb94d6406dfc7e66f0e719b10506b56866495797c3788
- SSDEEP
  
  6144:RDuqJ3f+sVSgE29xxspm0n1vuz3q9avZJT3CqbMrhryfQNRPaCieMjAkvCJv1Vir:hf+sVSgE29xxspm0n1vuz3q9avZJT3CA
Score

7^/10
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1