Resubmissions

22/08/2024, 12:33

240822-prdrcsxbph 3

22/08/2024, 12:31

240822-pqa9vazdqp 8

22/08/2024, 12:28

240822-pnejgsxamc 8

22/08/2024, 12:24

240822-plfzjawhld 3

General

  • Target

    IMG_20240403_100446.jpg

  • Size

    151KB

  • Sample

    240822-pqa9vazdqp

  • MD5

    c831ea5e71a02f0385cdfbb21a7f7a13

  • SHA1

    4430b664552e60813b24df402bfd98e8e240bb15

  • SHA256

    8f1373d68141153fd199fe865bd31c8052798fbb46316fb30615c0e36ee67107

  • SHA512

    176f89f164e522c8585ccd50579089b77a1a6be5e02b6081289d25811ec39789710b24cced27384df2f6ceb35d53a2db5e361179581dce7888344cd6c51731e9

  • SSDEEP

    3072:HIEGfnX3ag2n/nau9MhVAtIveKBzXEqbq5YZI8xX4tHG4xiN:HIBy/ausAt6egzXEqVe8OHGV

Malware Config

Targets

    • Target

      IMG_20240403_100446.jpg

    • Size

      151KB

    • MD5

      c831ea5e71a02f0385cdfbb21a7f7a13

    • SHA1

      4430b664552e60813b24df402bfd98e8e240bb15

    • SHA256

      8f1373d68141153fd199fe865bd31c8052798fbb46316fb30615c0e36ee67107

    • SHA512

      176f89f164e522c8585ccd50579089b77a1a6be5e02b6081289d25811ec39789710b24cced27384df2f6ceb35d53a2db5e361179581dce7888344cd6c51731e9

    • SSDEEP

      3072:HIEGfnX3ag2n/nau9MhVAtIveKBzXEqbq5YZI8xX4tHG4xiN:HIBy/ausAt6egzXEqVe8OHGV

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks