c5ac153c7b7291613f1e423b4b58078cf4904c6b4debd73f40082586be2ce616 | Triage

Sharing

General

Target

skyline.exe
Size

21.7MB
Sample

240811-g7wm4ssepf
MD5

04dfb1833e5b58056573d9ec2144c030
SHA1

4bf9695fcf50649f247aae2a59b27ade0971f284
SHA256

c5ac153c7b7291613f1e423b4b58078cf4904c6b4debd73f40082586be2ce616
SHA512

1dde8b2e4e071a5e1831c2b62b12788f1303517b440c06c5ffbe38c8a54518a2226a42b3dc0a29f3dcc78d6b96412b920cb37d61efd1cdb7edc98175b0f3cc80
SSDEEP

393216:FJZPzvfIz8yYlcIBYGkSUZti9UkqsHGG4VmsNsi7wpzGnRbzpMQYBK1F:7ZLu8yYlcIBYGjUZw9UkqkSm+T0J4R/q

Score

7^/10

Malware Config

Targets

- Target
  
  skyline.exe
- Size
  
  21.7MB
- MD5
  
  04dfb1833e5b58056573d9ec2144c030
- SHA1
  
  4bf9695fcf50649f247aae2a59b27ade0971f284
- SHA256
  
  c5ac153c7b7291613f1e423b4b58078cf4904c6b4debd73f40082586be2ce616
- SHA512
  
  1dde8b2e4e071a5e1831c2b62b12788f1303517b440c06c5ffbe38c8a54518a2226a42b3dc0a29f3dcc78d6b96412b920cb37d61efd1cdb7edc98175b0f3cc80
- SSDEEP
  
  393216:FJZPzvfIz8yYlcIBYGkSUZti9UkqsHGG4VmsNsi7wpzGnRbzpMQYBK1F:7ZLu8yYlcIBYGjUZw9UkqkSm+T0J4R/q
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1