aff40d4d1641f65bcff61fb1799004892e194aaff3f0a44103ae6ac57256ee6b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2cdbd22d129f6d86826d53210f42a320_NEAS
Size

1.2MB
Sample

240506-23ybcsfd51
MD5

2cdbd22d129f6d86826d53210f42a320
SHA1

9ecc439112921d2e6a891e60946b8e6029640f07
SHA256

aff40d4d1641f65bcff61fb1799004892e194aaff3f0a44103ae6ac57256ee6b
SHA512

f71b3aaee4eaa84750c16cca7d0128476b440f4c354616bd4f70d90bd23d26484e9f4a2224f7930fe26282bbf5ab687f64949dd773ed32bb7d7bd4fefbed4f81
SSDEEP

24576:HyFdW4E70f0Yx4HD+1ripk9KR6OTa/ZSya/JXk377Lv+f6T8KBGKXu/B:UZf0YxCKVimsgxg23bnBGKXu/B

Score

7^/10

Malware Config

Targets

- Target
  
  2cdbd22d129f6d86826d53210f42a320_NEAS
- Size
  
  1.2MB
- MD5
  
  2cdbd22d129f6d86826d53210f42a320
- SHA1
  
  9ecc439112921d2e6a891e60946b8e6029640f07
- SHA256
  
  aff40d4d1641f65bcff61fb1799004892e194aaff3f0a44103ae6ac57256ee6b
- SHA512
  
  f71b3aaee4eaa84750c16cca7d0128476b440f4c354616bd4f70d90bd23d26484e9f4a2224f7930fe26282bbf5ab687f64949dd773ed32bb7d7bd4fefbed4f81
- SSDEEP
  
  24576:HyFdW4E70f0Yx4HD+1ripk9KR6OTa/ZSya/JXk377Lv+f6T8KBGKXu/B:UZf0YxCKVimsgxg23bnBGKXu/B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2