275aacc2cec3ea050be9fb7aae0a2325d24fc5381152a4e667fb2f06658a0136 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

massdm.exe
Size

8.2MB
Sample

240616-sxht2ssfqn
MD5

fee6942d5431bf2b6eaa4fc9e9ebf043
SHA1

4ff6b253086af0744dab4df921c72a6b6c345e8f
SHA256

275aacc2cec3ea050be9fb7aae0a2325d24fc5381152a4e667fb2f06658a0136
SHA512

9598d02825ba10850be406686180023f5a54e76a849173e448a9085923066c15b95fe14551a5484d967b533a8b1052aa042f24fe85353df80bc7b0b6f605b803
SSDEEP

196608:jjr+gp1Dw9onJ5hrZERF//Q3jo4UR7+xpIrh6xDnikGZ0Ap:FpNw9c5hlERV/A2RSx6ElikG

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  massdm.exe
- Size
  
  8.2MB
- MD5
  
  fee6942d5431bf2b6eaa4fc9e9ebf043
- SHA1
  
  4ff6b253086af0744dab4df921c72a6b6c345e8f
- SHA256
  
  275aacc2cec3ea050be9fb7aae0a2325d24fc5381152a4e667fb2f06658a0136
- SHA512
  
  9598d02825ba10850be406686180023f5a54e76a849173e448a9085923066c15b95fe14551a5484d967b533a8b1052aa042f24fe85353df80bc7b0b6f605b803
- SSDEEP
  
  196608:jjr+gp1Dw9onJ5hrZERF//Q3jo4UR7+xpIrh6xDnikGZ0Ap:FpNw9c5hlERV/A2RSx6ElikG
Score

7^/10
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2
- Target
  
  massdm.pyc
- Size
  
  1023B
- MD5
  
  2fecf336a96e83cf3f00e15e49cef8eb
- SHA1
  
  0a2086885d43b3a06fcaefdeebdc40f0776c42ea
- SHA256
  
  13888a91a665df05df33bcc8c4b333cd4d54bd6c1e1cfd9d05c8a799ea331517
- SHA512
  
  504691d0183ee8c03f0f4cde538df3a7cb2d6e29094fe1b01bc9a17dea98363f81648cd5559bbb9837819d19b611ad3fd0c982cfe47492b96fe76d71f030141f
Score

3^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4