0e49f34f3ae77ec0988d1b79d00ded54145d5f85eb8cf3d622b6e2b4ca255ac4 | Triage

Sharing

General

Target

nexer.cc.rar
Size

65KB
Sample

240628-td4svawcne
MD5

e5ff3abfe85e943bc6573cffdaa70d10
SHA1

fe9f48f2188c4009fe654bb19fce016de37a4191
SHA256

0e49f34f3ae77ec0988d1b79d00ded54145d5f85eb8cf3d622b6e2b4ca255ac4
SHA512

e2e0f20a639a03413234b3819e889930ae29b305c5bd71748aa850b93c1a643613084d82615e45ce8af1b80bcfec93b6f7a1a964ed9463ab2a94d4f3e77345b1
SSDEEP

1536:/pLnOb2e2zbqzHYQGCAwy3uSHcu22egvPLN:/pnOpvz4bh7xc3g3R

Score

6^/10

Malware Config

Targets

- Target
  
  nexer.cc/nexer.cc.dll
- Size
  
  6KB
- MD5
  
  388bf01b5d34fb23a5d354bf0b8426e8
- SHA1
  
  8fa025244a27ba72a6090fa4bf4169f2c54dd079
- SHA256
  
  f9479456926daaed99ee85ee6e2f8a3233dd71d86a6561f0e9017f30bed8fd22
- SHA512
  
  3f6cc78b05699a47960bcf8cc464f3aa643006de4eb64bf483d52741d190da117ead7d3d1ef4331cc2d22f9b24a14f77612cf3211abbb1da789c845d1a33786d
- SSDEEP
  
  96:qQQfUIuVdxUoSV+pOyxLYiaTDF8Tk14uLAMPW8yIQhmzNt:qVfUIAdioSVVyxLWaTyhPxpQhg
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2
- Target
  
  nexer.cc/nexer.cc.exe
- Size
  
  139KB
- MD5
  
  fa5c846ec1a2dd0516bbff5d08e87b8a
- SHA1
  
  1ac9d85001c74f63356cb7fec921beee90eb5132
- SHA256
  
  e23615646b1bf3a7777a22d64d81a633de5380d19e0fb28d57a7ab36eb9be3c6
- SHA512
  
  b3e50090f2031027f338d92078f9e7861052261372c8e1eed65c71a8d47f11699f34261bbb82a374808abc4df4111b9b8e378b12d5cfbc1322edbc08e84c85f2
- SSDEEP
  
  3072:+iS4omp03WQthI/9S3BZi08iRQ1G78IVn2sbS7cJo8ltc:+iS4ompB9S3BZi0a1G78IVAcWct
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4