General

  • Target

    Shipfarm.exe

  • Size

    65.0MB

  • Sample

    240628-zwjtaasbje

  • MD5

    1a2228e5915c1456a0f1234396c3703b

  • SHA1

    40dbcb8124c7156bcde596d7071d0553d308c1a2

  • SHA256

    74c0a7c304c6ada51b15527f5f8df034a45f566d93cbdc4940698f36845e43af

  • SHA512

    1019bb9029a4970d030a84c7c7f3e63334dc5913ed79861472c8345cc59f7052f7a742a436ac6dfb7a2b490c4dacf4c3d39a17e2cc7079d7f74786d4c78b8005

  • SSDEEP

    1572864:PRW1wkv1Tz5g/qPz9QIrQFd2y8IyFNOXWxtQSN3iIJ2qHWB75iVXRWnQM:PU1wq35gSmCQFdt8vFcKCoJ2qHO5iVh7

Score
7/10

Malware Config

Targets

    • Target

      Shipfarm.exe

    • Size

      65.0MB

    • MD5

      1a2228e5915c1456a0f1234396c3703b

    • SHA1

      40dbcb8124c7156bcde596d7071d0553d308c1a2

    • SHA256

      74c0a7c304c6ada51b15527f5f8df034a45f566d93cbdc4940698f36845e43af

    • SHA512

      1019bb9029a4970d030a84c7c7f3e63334dc5913ed79861472c8345cc59f7052f7a742a436ac6dfb7a2b490c4dacf4c3d39a17e2cc7079d7f74786d4c78b8005

    • SSDEEP

      1572864:PRW1wkv1Tz5g/qPz9QIrQFd2y8IyFNOXWxtQSN3iIJ2qHWB75iVXRWnQM:PU1wq35gSmCQFdt8vFcKCoJ2qHO5iVh7

    Score
    7/10
    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks