2c961060c113dafc3e22372a5e2f89fd70d59b2c491274161f5a64fc7ebe7e60 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

plik.exe
Size

20.6MB
Sample

240427-rgcsesce9s
MD5

cad2d2c934e809554a6a3cf655592ed6
SHA1

3c33a636e10af09127fd17871d529fcae39a1a90
SHA256

2c961060c113dafc3e22372a5e2f89fd70d59b2c491274161f5a64fc7ebe7e60
SHA512

0e44eed3e96d2c1b8553e26685dcdf41e717da69ba4d23c0004a375fb93fad26711e6e0990dcac9148811351797f6c49d7083245274725cac789c56e8e4f1389
SSDEEP

393216:2OL3/pvQ8OG8B1+TtIiFpvvB5IjWqpau5qW80hoA/xzmCbSzWK:ndQlB1QtIgX3ILv5qW80hhuzWK

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  plik.exe
- Size
  
  20.6MB
- MD5
  
  cad2d2c934e809554a6a3cf655592ed6
- SHA1
  
  3c33a636e10af09127fd17871d529fcae39a1a90
- SHA256
  
  2c961060c113dafc3e22372a5e2f89fd70d59b2c491274161f5a64fc7ebe7e60
- SHA512
  
  0e44eed3e96d2c1b8553e26685dcdf41e717da69ba4d23c0004a375fb93fad26711e6e0990dcac9148811351797f6c49d7083245274725cac789c56e8e4f1389
- SSDEEP
  
  393216:2OL3/pvQ8OG8B1+TtIiFpvvB5IjWqpau5qW80hoA/xzmCbSzWK:ndQlB1QtIgX3ILv5qW80hhuzWK
Score

7^/10
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2