311d1eec40cd03c1460bac91043a4454e745345667ff661f51e2e167c05cc347 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

311d1eec40cd03c1460bac91043a4454e745345667ff661f51e2e167c05cc347.exe
Size

3.6MB
Sample

240705-dk447atcqf
MD5

1b166349960ee2e6a2ffdf1a565d8b00
SHA1

585c4738ef84016e02a0e0429b9593aa8e713163
SHA256

311d1eec40cd03c1460bac91043a4454e745345667ff661f51e2e167c05cc347
SHA512

4d24e89cbc9870dc12a750d2ddbbd8d030e1eacf4cf9f2be7505c252330eb89dc00bbc619c94d147b44e74ada10d40b52b7a504d5589ee518499f7a8289f3a9c
SSDEEP

49152:tQ8nJd/wACgevLugTg4khbNsm+kCjmCX5yvpnr5jtIgygRbNsm+x:txn/wAC7vLNkhZshnvs5rfZshx

Score

7^/10

Malware Config

Targets

- Target
  
  311d1eec40cd03c1460bac91043a4454e745345667ff661f51e2e167c05cc347.exe
- Size
  
  3.6MB
- MD5
  
  1b166349960ee2e6a2ffdf1a565d8b00
- SHA1
  
  585c4738ef84016e02a0e0429b9593aa8e713163
- SHA256
  
  311d1eec40cd03c1460bac91043a4454e745345667ff661f51e2e167c05cc347
- SHA512
  
  4d24e89cbc9870dc12a750d2ddbbd8d030e1eacf4cf9f2be7505c252330eb89dc00bbc619c94d147b44e74ada10d40b52b7a504d5589ee518499f7a8289f3a9c
- SSDEEP
  
  49152:tQ8nJd/wACgevLugTg4khbNsm+kCjmCX5yvpnr5jtIgygRbNsm+x:txn/wAC7vLNkhZshnvs5rfZshx
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2