a95fceeb071369f487de35653cdc7ba1f195d4dab9aa6606f30348e012b98b51 | Triage

Sharing

General

Target

0546f9f348cf5d4f67ad6e42d0e52370N.exe
Size

2.4MB
Sample

240825-v59nvawang
MD5

0546f9f348cf5d4f67ad6e42d0e52370
SHA1

145b80a6b040ab7200dab09ddfd3a64673c198ad
SHA256

a95fceeb071369f487de35653cdc7ba1f195d4dab9aa6606f30348e012b98b51
SHA512

71a059eca159c289d7cfb0f9ccb1fba3c52d5a70346940a00ed4fab905533aa9323c6e62f4cc2b93da6a8ef4313b818021859998427b248866195c60057dba16
SSDEEP

49152:7q2lA3K+MgIs6halJgwbq4TTC8uk2bC73Cmghbq4T/:7q2lA3KvAhT+7kyhT/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0546f9f348cf5d4f67ad6e42d0e52370N.exe
- Size
  
  2.4MB
- MD5
  
  0546f9f348cf5d4f67ad6e42d0e52370
- SHA1
  
  145b80a6b040ab7200dab09ddfd3a64673c198ad
- SHA256
  
  a95fceeb071369f487de35653cdc7ba1f195d4dab9aa6606f30348e012b98b51
- SHA512
  
  71a059eca159c289d7cfb0f9ccb1fba3c52d5a70346940a00ed4fab905533aa9323c6e62f4cc2b93da6a8ef4313b818021859998427b248866195c60057dba16
- SSDEEP
  
  49152:7q2lA3K+MgIs6halJgwbq4TTC8uk2bC73Cmghbq4T/:7q2lA3KvAhT+7kyhT/
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2