437e0d18e60998bd0236dd5da5637a90ec3b6887f1eb25e6557a2354dc96404b | Triage

Sharing

General

Target

svchost.exe
Size

7.8MB
Sample

240607-qtw66agh5v
MD5

9b0ba3738c994d5850d97077d578d3bc
SHA1

2c9cea5a8ea57bf7af6f9a2ce7b08f0739406399
SHA256

437e0d18e60998bd0236dd5da5637a90ec3b6887f1eb25e6557a2354dc96404b
SHA512

cf9b79822d94c72dd3474d11fc0ec5be22bcf761a6625d6d67ce1be2a7f042570a89dcaff8820240d3d7acc7fb3e1616efec7ad81b97fca9b3bfc1a15dea6f72
SSDEEP

196608:9yRAV2QsyH3zE39onJ5hrZEOe9tGPqKmTbITf5WqkZVWh:aOnzY9c5hlEcPNm3U53kT

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  svchost.exe
- Size
  
  7.8MB
- MD5
  
  9b0ba3738c994d5850d97077d578d3bc
- SHA1
  
  2c9cea5a8ea57bf7af6f9a2ce7b08f0739406399
- SHA256
  
  437e0d18e60998bd0236dd5da5637a90ec3b6887f1eb25e6557a2354dc96404b
- SHA512
  
  cf9b79822d94c72dd3474d11fc0ec5be22bcf761a6625d6d67ce1be2a7f042570a89dcaff8820240d3d7acc7fb3e1616efec7ad81b97fca9b3bfc1a15dea6f72
- SSDEEP
  
  196608:9yRAV2QsyH3zE39onJ5hrZEOe9tGPqKmTbITf5WqkZVWh:aOnzY9c5hlEcPNm3U53kT
Score

7^/10
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2