aa98724a7b86f6660bcb3d5a52dede4eab7e4fb2378eb0753f0df4f775de81f1 | Triage

Sharing

General

Target

2024-04-30_25f369cc68288ae52d974283eb5a0d08_snatch
Size

7.6MB
Sample

240430-myn5kaaf3x
MD5

25f369cc68288ae52d974283eb5a0d08
SHA1

b2d21327ddd8af9adb20c3d1dbbdb0bcba9d4190
SHA256

aa98724a7b86f6660bcb3d5a52dede4eab7e4fb2378eb0753f0df4f775de81f1
SHA512

c15d061016d797b682fcb1c53408bf9690fb78585d16102709b792058885259202d19782166d3c2bb7fee4c78f6c6e4c96ce10019d9e1e37dec393c1fa95e1b6
SSDEEP

196608:4GDsWQSHvyuaM8Vjc9wOqbvd4yvGI6syK:hoWQmvyua/Rc9ybF4wG9sy

Score

10^/10

Malware Config

Targets

- Target
  
  2024-04-30_25f369cc68288ae52d974283eb5a0d08_snatch
- Size
  
  7.6MB
- MD5
  
  25f369cc68288ae52d974283eb5a0d08
- SHA1
  
  b2d21327ddd8af9adb20c3d1dbbdb0bcba9d4190
- SHA256
  
  aa98724a7b86f6660bcb3d5a52dede4eab7e4fb2378eb0753f0df4f775de81f1
- SHA512
  
  c15d061016d797b682fcb1c53408bf9690fb78585d16102709b792058885259202d19782166d3c2bb7fee4c78f6c6e4c96ce10019d9e1e37dec393c1fa95e1b6
- SSDEEP
  
  196608:4GDsWQSHvyuaM8Vjc9wOqbvd4yvGI6syK:hoWQmvyua/Rc9ybF4wG9sy
Score

6^/10
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2