a33d16ea4894ec01686e53d01c6a2b8f816f4abdaead7ece41262e03ffa9c13f | Triage

Submit
Reports

Overview

overview

6

Static

static

3

Crowbar.exe

windows10-1703-x64

6

Sharing

General

Target

Crowbar_2023-02-16_0.74.7z
Size

1.0MB
Sample

240522-2x541scc63
MD5

d9d853cc80eaf95e13dab4e9c41916ab
SHA1

cf1e5c89264e891f53e1c633217d5b055b3c1f0e
SHA256

a33d16ea4894ec01686e53d01c6a2b8f816f4abdaead7ece41262e03ffa9c13f
SHA512

06ce34d0fd91a01397029c1c2b9b6444b7ddcf2f9b01e5180b548e98308e35adf916d0fe766f058af6a7ce6d1bd232e8ab702edca0bf77ad63dd8d03f69a9ee0
SSDEEP

24576:4M+LNe5+A09HH3dcBWRNcKMJzXz5E3wYLbkt7hi0tz+iR:4m5+A09ntcBWlQXz+hb4hiOCg

Score

6^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Crowbar.exe

Resource

win10-20240404-en

windows10-1703-x64

14 signatures

1800 seconds

Malware Config

Targets

- Target
  
  Crowbar.exe
- Size
  
  4.3MB
- MD5
  
  3ec3b40887c5cf7962773e60dfb201bc
- SHA1
  
  d9e8c971af104fe9e095d3917683ad63a6a03c28
- SHA256
  
  b723a406a7f99a5565c10dd6e8c8de02e8988f6162e7fe44bd0e9ca9d58ebad9
- SHA512
  
  01ee89e1f4c0a963b4f2b139bae118479565f38bd556244fae976b103b13c657aa2610bbf18952d0d5cb86faeff8997d7f574f64f075f556204c309c742dba8c
- SSDEEP
  
  49152:bmEVdZRzpCm9wROW5TUBJ55rfAocpl1LVC8aoLCE4c4OTernGmcFxs/0JhxCU5:zwDNA5Kb1LYvc4Ovfs/6
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy