b835140a0b3cadedcafb1fc9b885bc5915e11793f0146abb3e1dcd49bcf439d5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b835140a0b3cadedcafb1fc9b885bc5915e11793f0146abb3e1dcd49bcf439d5
Size

54KB
Sample

240419-t5g36aac2y
MD5

e63b9f190c175eb570e35a4777bb3f46
SHA1

06a4572138a5e1a9fef323e86602fda0a121398e
SHA256

b835140a0b3cadedcafb1fc9b885bc5915e11793f0146abb3e1dcd49bcf439d5
SHA512

323d49ada64789e50c56d9686b721c0524f4c0bdcac3e65fc926862a8ea6563c83837adbe8240eb1f90b68d2cd6a23854d1e5cf7a39ce59684a95c00e1a880c6
SSDEEP

768:NrPmJJopDQl4GEmHF3SKpXGXtDMsc5tqy2sE7m51p7aY/JjvbiOJ6Vr0neDPb0Lv:xPoWgFC8We3qCz51AYl80eDP/yQA

Score

9^/10

discovery

Malware Config

Targets

- Target
  
  ad86a9aa104fbe73a131bc1bf1619eddc5b4a338c3b1667269d2700c9658ae72.exe
- Size
  
  95KB
- MD5
  
  41d4f7ac88fc13d62071f0e91eade952
- SHA1
  
  aacd3864db89e5c50788678109ad5a2cdebc47e0
- SHA256
  
  ad86a9aa104fbe73a131bc1bf1619eddc5b4a338c3b1667269d2700c9658ae72
- SHA512
  
  cd24c21445d3142d74d36a07818fd0461f98a5133061ac1eb5a5d0716bcdaf2949b4b8058c94c0f468c089f47aa1cca55a173e2345b2be3b0b221598f9a5f139
- SSDEEP
  
  1536:ZeopEF8Ka2tc32pUGGG2vsOKOlKZ7vHhvIEVITFBoAKUWdjQIYTm2SnZHvozwOnv:ZeopEiKftc32pwKOCZgpFWzTwkZHvQRv
Score

9^/10

discovery
- Contacts a large (4100) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2