227472e07d4ed9f784f58cf58a79e8b6f300dd45e0be93a77a372abc2a78c7d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4536c613560f5c69d63b2a09cb69a410N.exe
Size

1.1MB
Sample

240823-ghzy8szhqr
MD5

4536c613560f5c69d63b2a09cb69a410
SHA1

fd212fb49a228be464a126f82d1c25dd07868fe8
SHA256

227472e07d4ed9f784f58cf58a79e8b6f300dd45e0be93a77a372abc2a78c7d2
SHA512

e2ed808a56d6c957edfa4844f2327c37bd4f5ab0674c31a679be828827a3178a509d1b48610c84061c3c939d17d4f2e8b704f31670ebb9ba8be65e39325a4f89
SSDEEP

24576:REyVdiMjglOD1USbea/ZSoa/JXekh77Lv+fh:RZVvjgloegTg4khb+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4536c613560f5c69d63b2a09cb69a410N.exe
- Size
  
  1.1MB
- MD5
  
  4536c613560f5c69d63b2a09cb69a410
- SHA1
  
  fd212fb49a228be464a126f82d1c25dd07868fe8
- SHA256
  
  227472e07d4ed9f784f58cf58a79e8b6f300dd45e0be93a77a372abc2a78c7d2
- SHA512
  
  e2ed808a56d6c957edfa4844f2327c37bd4f5ab0674c31a679be828827a3178a509d1b48610c84061c3c939d17d4f2e8b704f31670ebb9ba8be65e39325a4f89
- SSDEEP
  
  24576:REyVdiMjglOD1USbea/ZSoa/JXekh77Lv+fh:RZVvjgloegTg4khb+
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2