f2fea660a69ac61119f1a30bbe9dfe157aef6c40e73c3874a500143a7b26c6f7 | Triage

Sharing

General

Target

Cwelium.exe
Size

12.8MB
Sample

240820-xvzr1aydkd
MD5

3c7cc2f565f73dbc7fdee28123ff395e
SHA1

10f2272b6ed44b3d2e1dd8df348b6bb41dea631b
SHA256

f2fea660a69ac61119f1a30bbe9dfe157aef6c40e73c3874a500143a7b26c6f7
SHA512

5be5f258b2ec9ca36327be7c365a73e8f5a8dfeb17b2cfc0c3fa2d2ac78165a04aeda996aac37359301cb94f5354ade325ed22221c3725f33ec544e047108247
SSDEEP

393216:u2oxNgBt5DbyvSlshkEQNOuHJjJHl9uqrUP9s/GU:fof65HoA8QNDjBl9Wa

Score

7^/10

Malware Config

Targets

- Target
  
  Cwelium.exe
- Size
  
  12.8MB
- MD5
  
  3c7cc2f565f73dbc7fdee28123ff395e
- SHA1
  
  10f2272b6ed44b3d2e1dd8df348b6bb41dea631b
- SHA256
  
  f2fea660a69ac61119f1a30bbe9dfe157aef6c40e73c3874a500143a7b26c6f7
- SHA512
  
  5be5f258b2ec9ca36327be7c365a73e8f5a8dfeb17b2cfc0c3fa2d2ac78165a04aeda996aac37359301cb94f5354ade325ed22221c3725f33ec544e047108247
- SSDEEP
  
  393216:u2oxNgBt5DbyvSlshkEQNOuHJjJHl9uqrUP9s/GU:fof65HoA8QNDjBl9Wa
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2