4fdd846ce80a812ef288d6962915707ef226e305081f16d464ddfe4752817383 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8kxdsp.7z
Size

222KB
Sample

240811-mwtl9swdqm
MD5

6b920419dc96c33c1564b0bfda432f4f
SHA1

83b691bb9352236b2f4a872cb32d22d868597f8c
SHA256

4fdd846ce80a812ef288d6962915707ef226e305081f16d464ddfe4752817383
SHA512

90152c09e844a1e3dc846836c2968040b9fba15a7e1ad92e9cdd6a16fa448dc66a81b9b5a88c617e3c66e53e04ad5562aa58547f70aa8635346f6aba2d034cab
SSDEEP

6144:zkLJQftqF0y/zgitTeZY+WPuLPujIu3quXi7:zk9Qftg/zhTLkOY

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  8kxdsp.7z
- Size
  
  222KB
- MD5
  
  6b920419dc96c33c1564b0bfda432f4f
- SHA1
  
  83b691bb9352236b2f4a872cb32d22d868597f8c
- SHA256
  
  4fdd846ce80a812ef288d6962915707ef226e305081f16d464ddfe4752817383
- SHA512
  
  90152c09e844a1e3dc846836c2968040b9fba15a7e1ad92e9cdd6a16fa448dc66a81b9b5a88c617e3c66e53e04ad5562aa58547f70aa8635346f6aba2d034cab
- SSDEEP
  
  6144:zkLJQftqF0y/zgitTeZY+WPuLPujIu3quXi7:zk9Qftg/zhTLkOY
Score

3^/10
behavioral1
- Target
  
  CeleryInstaller.exe
- Size
  
  822KB
- MD5
  
  0bd82e264be214414d6dd26bac3e1770
- SHA1
  
  5325e64053dcf599a9c5cedec532418716f9d357
- SHA256
  
  60593ced1e78fd4b3fdffcd58bcde989d8e9b031b3ad9132815fdf614e0449d4
- SHA512
  
  842a80fed2286d06987cd2dde7ae94fc6c7986eb49cc62684f62f148973e5080df7866e1d2f81d53cb5ac95ef9d88489f6765265e29104be0ae349c6a3164592
- SSDEEP
  
  12288:c5SsIg0ZvkY29slOLJFbJZXM1Eg/2QAu4NRFNxIg0Z:Ru0ZvkY29+OLfzI2Q0NH10Z
Score

6^/10

discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2