ed196a11f58d84f90ccc29aaf206b9981b9587b58da175000781d363dec0f7bd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Spectra-Injector.exe
Size

9.8MB
Sample

240722-12zmcs1ckf
MD5

3d5d9dcc3b0fda0743317ced3801c1ed
SHA1

e6290512a5de687783eee1caee1eb2733f494e40
SHA256

ed196a11f58d84f90ccc29aaf206b9981b9587b58da175000781d363dec0f7bd
SHA512

07ac29af6d1a62bce12c3dcc988d3311fb58a3b6ff13f17614425d8e7d69cffe0cba8397ab5a121de8c4a62339a234c2ec0c7bf024eb0e23446de8ec2f321a3e
SSDEEP

196608:EjKc2pwqBA1HeT39Iigw01ncKOVVt+v7w7GLUnig+IjFnCMfjK:zc2Fq1+TtIiFQ0VSDw7GLg9C8K

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  Spectra-Injector.exe
- Size
  
  9.8MB
- MD5
  
  3d5d9dcc3b0fda0743317ced3801c1ed
- SHA1
  
  e6290512a5de687783eee1caee1eb2733f494e40
- SHA256
  
  ed196a11f58d84f90ccc29aaf206b9981b9587b58da175000781d363dec0f7bd
- SHA512
  
  07ac29af6d1a62bce12c3dcc988d3311fb58a3b6ff13f17614425d8e7d69cffe0cba8397ab5a121de8c4a62339a234c2ec0c7bf024eb0e23446de8ec2f321a3e
- SSDEEP
  
  196608:EjKc2pwqBA1HeT39Iigw01ncKOVVt+v7w7GLUnig+IjFnCMfjK:zc2Fq1+TtIiFQ0VSDw7GLg9C8K
Score

7^/10
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Drops file in System32 directory
behavioral1
- Target
  
  main.pyc
- Size
  
  2KB
- MD5
  
  b7f459a871bc7f6ba180e22c51425044
- SHA1
  
  e6ca5269f54f37792ca5d02ec2d1d40bac9e41ca
- SHA256
  
  12f300364cc5d279c8d3096c8eb7606f618f4de659906e01bd33a1dd5a876a97
- SHA512
  
  f48272abad63004f9b674d6530a986bb75d69226a40a30dc454cce42e9f9a40ab8cb718d916a6c24ed23d9c94e27e4da634256a782d1124d7bf7ab0ee8b112b9
Score

3^/10
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2