a2706ced712d733502af5ba0f15945a7c9744aa2fb1d9d98cc7aa3c128c5b523 | Triage

Resubmissions

27-10-2024 06:37

241027-hdl29asnap 10

27-10-2024 06:34

241027-hbv75ssrav 8

Sharing

General

Target

The-MALWARE-Repo
Size

298KB
Sample

241027-hbv75ssrav
MD5

07c71f38ba70d3cd08780578f673366b
SHA1

91920288a31959a00ba02ee68dbe64c874203e01
SHA256

a2706ced712d733502af5ba0f15945a7c9744aa2fb1d9d98cc7aa3c128c5b523
SHA512

56b93f6a9f77f715bca4b4fa07bfde2adf7440d8b01b8048bf1eb7cb6b446e15d0b4eaa9299dd001e3ea33d4c9fd30761334aebbccd9eb55528eeb50297b3cf6
SSDEEP

6144:yLouSpOL/saqkPV9FemLtcsDSsmwF9VvZJT3CqbMrhryf65NRPaCieMjAkvCJv1N:AouSpOL/saqkPV9FemLtcsDSsmwF9Vv4

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  The-MALWARE-Repo
- Size
  
  298KB
- MD5
  
  07c71f38ba70d3cd08780578f673366b
- SHA1
  
  91920288a31959a00ba02ee68dbe64c874203e01
- SHA256
  
  a2706ced712d733502af5ba0f15945a7c9744aa2fb1d9d98cc7aa3c128c5b523
- SHA512
  
  56b93f6a9f77f715bca4b4fa07bfde2adf7440d8b01b8048bf1eb7cb6b446e15d0b4eaa9299dd001e3ea33d4c9fd30761334aebbccd9eb55528eeb50297b3cf6
- SSDEEP
  
  6144:yLouSpOL/saqkPV9FemLtcsDSsmwF9VvZJT3CqbMrhryf65NRPaCieMjAkvCJv1N:AouSpOL/saqkPV9FemLtcsDSsmwF9Vv4
Score

8^/10

discovery
- Downloads MZ/PE file
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2