995511db559b813eaee05284623eb9029a8974595cbc93a81d6e4e8b5b1b054a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7c7de9fb63aa568e0e67e32be3bb23a0N.exe
Size

960KB
Sample

240727-b63r5sygmq
MD5

7c7de9fb63aa568e0e67e32be3bb23a0
SHA1

980e7de3c22a6bb00840fab8a6581550566ae97f
SHA256

995511db559b813eaee05284623eb9029a8974595cbc93a81d6e4e8b5b1b054a
SHA512

c3283df4d13291e6cf290e39ccf64ed3d61762c9f2f08f1e88de1337cc44d907dd96a0a541aa8a4a6db6d7bb0cc1d9dc8fb80ca125f8d06a71fed38f1be00bec
SSDEEP

12288:Wwi0UWab4+HQu9pAbjp0EPME/2VNz7JjAOUyxX/x5SgfPjVDa/ZSjXuUC77L9:Wr0UHwu0qE3/GJJcM6u9a/ZSjXuF77L9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  7c7de9fb63aa568e0e67e32be3bb23a0N.exe
- Size
  
  960KB
- MD5
  
  7c7de9fb63aa568e0e67e32be3bb23a0
- SHA1
  
  980e7de3c22a6bb00840fab8a6581550566ae97f
- SHA256
  
  995511db559b813eaee05284623eb9029a8974595cbc93a81d6e4e8b5b1b054a
- SHA512
  
  c3283df4d13291e6cf290e39ccf64ed3d61762c9f2f08f1e88de1337cc44d907dd96a0a541aa8a4a6db6d7bb0cc1d9dc8fb80ca125f8d06a71fed38f1be00bec
- SSDEEP
  
  12288:Wwi0UWab4+HQu9pAbjp0EPME/2VNz7JjAOUyxX/x5SgfPjVDa/ZSjXuUC77L9:Wr0UHwu0qE3/GJJcM6u9a/ZSjXuF77L9
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2