General

  • Target

    index.exe

  • Size

    13.2MB

  • Sample

    240726-tf222a1gpf

  • MD5

    b19ecc85f6fb66a7284923be049659cd

  • SHA1

    23d8ffbf1f0dd96538124c80481e7676bbd392fb

  • SHA256

    077fbfcf6bbc5690d8f7ad368a6414a0ca3ca4117d148e637b0ea07146c69809

  • SHA512

    e030cf7383f1ea05f9af400034e0f6673ecbda6f25a24ee98e467555cebf41b3ce56cf3e11c02af33baaa25293fd74a62a818cd81a08c40f2c600c41a53c2051

  • SSDEEP

    393216:iEkcqY4q1+TtIiF0Y9Z8D8Ccl6lnmEaUzlewA/Wm5R+:ikD4q1QtILa8DZcIlmgUd7z+

Malware Config

Targets

    • Target

      Creal.pyc

    • Size

      108KB

    • MD5

      827fee64b0b3073f98bd0c945081f337

    • SHA1

      1bd490373e23f3db124f2049bf0081258b836139

    • SHA256

      67c6aab3dc0f448c4b4de7c0fce857961e098986ccabb7c71fb9f48aef29aad2

    • SHA512

      dd85c046bac960cfb4f2bb432ec5eee74e8fbfc48fbbb1727f9c140acf6fff2ff47ffb84828abf9ea470a2eb4216607f5ed062065345a1719f54d0780ab2fbc7

    • SSDEEP

      3072:nV7MaNdUcd63LDAFT8+IiEssh00mH0PtZ8IKEDRc:aQUgW33Hlc

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks