e3b1599e3ec5862347b24336ca0e228d45a0becb6f6da45f619dd8e03e75854a | Triage

Resubmissions

16-06-2024 16:01

240616-tgan6stdpl 6

16-06-2024 15:46

240616-s7tz3atarn 8

Sharing

General

Target

Orbit.exe
Size

2.0MB
Sample

240616-s7tz3atarn
MD5

5de2a10bbf43eea7059747b139f9f728
SHA1

ee56319da9bb880fcc369002c2c628c76910d38a
SHA256

e3b1599e3ec5862347b24336ca0e228d45a0becb6f6da45f619dd8e03e75854a
SHA512

c206193015d0c663f737b421f77438ff4a62bc4d7cf5016b86a3632ed0ba0f48df6c0ac4e7929fb9f89d37a302ac744c2a0e289c9e669a75537fdd0d4fa8a902
SSDEEP

49152:oKn5Sz1xoQrp2OJChuMb14Z+cjDvkui9XZlXR0RcEnAUwn:W/Nr8py+cjDvkui9XHXmREUwn

Score

8^/10

Malware Config

Targets

- Target
  
  Orbit.exe
- Size
  
  2.0MB
- MD5
  
  5de2a10bbf43eea7059747b139f9f728
- SHA1
  
  ee56319da9bb880fcc369002c2c628c76910d38a
- SHA256
  
  e3b1599e3ec5862347b24336ca0e228d45a0becb6f6da45f619dd8e03e75854a
- SHA512
  
  c206193015d0c663f737b421f77438ff4a62bc4d7cf5016b86a3632ed0ba0f48df6c0ac4e7929fb9f89d37a302ac744c2a0e289c9e669a75537fdd0d4fa8a902
- SSDEEP
  
  49152:oKn5Sz1xoQrp2OJChuMb14Z+cjDvkui9XZlXR0RcEnAUwn:W/Nr8py+cjDvkui9XHXmREUwn
Score

8^/10
- Downloads MZ/PE file
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2