a33d16ea4894ec01686e53d01c6a2b8f816f4abdaead7ece41262e03ffa9c13f | Triage

Sharing

General

Target

Crowbar_2023-02-16_0.74.7z
Size

1.0MB
Sample

240522-2waayscb5x
MD5

d9d853cc80eaf95e13dab4e9c41916ab
SHA1

cf1e5c89264e891f53e1c633217d5b055b3c1f0e
SHA256

a33d16ea4894ec01686e53d01c6a2b8f816f4abdaead7ece41262e03ffa9c13f
SHA512

06ce34d0fd91a01397029c1c2b9b6444b7ddcf2f9b01e5180b548e98308e35adf916d0fe766f058af6a7ce6d1bd232e8ab702edca0bf77ad63dd8d03f69a9ee0
SSDEEP

24576:4M+LNe5+A09HH3dcBWRNcKMJzXz5E3wYLbkt7hi0tz+iR:4m5+A09ntcBWlQXz+hb4hiOCg

Score

6^/10

Malware Config

Targets

- Target
  
  Crowbar.exe
- Size
  
  4.3MB
- MD5
  
  3ec3b40887c5cf7962773e60dfb201bc
- SHA1
  
  d9e8c971af104fe9e095d3917683ad63a6a03c28
- SHA256
  
  b723a406a7f99a5565c10dd6e8c8de02e8988f6162e7fe44bd0e9ca9d58ebad9
- SHA512
  
  01ee89e1f4c0a963b4f2b139bae118479565f38bd556244fae976b103b13c657aa2610bbf18952d0d5cb86faeff8997d7f574f64f075f556204c309c742dba8c
- SSDEEP
  
  49152:bmEVdZRzpCm9wROW5TUBJ55rfAocpl1LVC8aoLCE4c4OTernGmcFxs/0JhxCU5:zwDNA5Kb1LYvc4Ovfs/6
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2