c50b417b857bbc2e39a363c34b58e002813cef5c5286227d9367b1f3b74e2445 | Triage

Resubmissions

17/05/2024, 19:07

240517-xszdfsea3w 7

17/05/2024, 19:03

240517-xqgevsea44 7

Sharing

Copy URL Twitter E-mail

General

Target

Cheddlatron.exe
Size

27.1MB
Sample

240517-xszdfsea3w
MD5

160f7457b071aaa8d1e61dd335e1bfb6
SHA1

1480c9b2117f36aa582f9254ad5b7197f6d0d2ba
SHA256

c50b417b857bbc2e39a363c34b58e002813cef5c5286227d9367b1f3b74e2445
SHA512

346842a92dd4f66913f187dc4022d4d9b19815071619e7d869e982aab7f673d63617541f18a9b0d4b51d8564fbfee722cd4b85d08aed4988d149174ce3ffa269
SSDEEP

786432:PZGqiZ/hGbsnb4VnTmr3Bb5onfFJBLzaAfV:h+MVSNbgDLz

Score

7^/10

Malware Config

Targets

- Target
  
  Cheddlatron.exe
- Size
  
  27.1MB
- MD5
  
  160f7457b071aaa8d1e61dd335e1bfb6
- SHA1
  
  1480c9b2117f36aa582f9254ad5b7197f6d0d2ba
- SHA256
  
  c50b417b857bbc2e39a363c34b58e002813cef5c5286227d9367b1f3b74e2445
- SHA512
  
  346842a92dd4f66913f187dc4022d4d9b19815071619e7d869e982aab7f673d63617541f18a9b0d4b51d8564fbfee722cd4b85d08aed4988d149174ce3ffa269
- SSDEEP
  
  786432:PZGqiZ/hGbsnb4VnTmr3Bb5onfFJBLzaAfV:h+MVSNbgDLz
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1