7799944b99842f2525f464048c03bd233d67449718bcf08bb540c243258a94f8 | Triage

Resubmissions

12/07/2024, 12:42

240712-pxp2kstflj 4

12/07/2024, 12:37

240712-ptyvbatekl 6

12/07/2024, 12:36

240712-ps4n6stdqp 1

Sharing

General

Target

MemTweakIt-2.exe
Size

7.4MB
Sample

240712-ptyvbatekl
MD5

8fd3035f964d56df1bbf66caeaf9f3b2
SHA1

14d3b77c45739cf5c006141c20d9e9e9e6c449f4
SHA256

7799944b99842f2525f464048c03bd233d67449718bcf08bb540c243258a94f8
SHA512

332b7922dcd4fd303838f02be7e787072a34f04e1f484cdf921993df206a74dac94af2fa056fb33c1c774335bd44eee3b6415ff56eb0f2faa422745ea4408aa8
SSDEEP

98304:GjKQmSHFgQAkxIMLZ31f8A2ZC/4qXYHTzUbMGyzkvTKW:1DSHCQ/1fdXYHT+TKW

Score

6^/10

Malware Config

Targets

- Target
  
  MemTweakIt-2.exe
- Size
  
  7.4MB
- MD5
  
  8fd3035f964d56df1bbf66caeaf9f3b2
- SHA1
  
  14d3b77c45739cf5c006141c20d9e9e9e6c449f4
- SHA256
  
  7799944b99842f2525f464048c03bd233d67449718bcf08bb540c243258a94f8
- SHA512
  
  332b7922dcd4fd303838f02be7e787072a34f04e1f484cdf921993df206a74dac94af2fa056fb33c1c774335bd44eee3b6415ff56eb0f2faa422745ea4408aa8
- SSDEEP
  
  98304:GjKQmSHFgQAkxIMLZ31f8A2ZC/4qXYHTzUbMGyzkvTKW:1DSHCQ/1fdXYHT+TKW
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2