3a6b7d6a34b1805b024f95fdcdc8fc13cc80ce13958b8ba913791963d346d1c4 | Triage

Sharing

General

Target

logs_checker.rar
Size

11.1MB
Sample

241121-jew5aatrgq
MD5

93dc704b6c7d3c8b678948eda5f90c94
SHA1

9e6d2f70c20d558a768042b52a3af396819bbeb6
SHA256

3a6b7d6a34b1805b024f95fdcdc8fc13cc80ce13958b8ba913791963d346d1c4
SHA512

184a3cd4a8274c9657eb79c5f356a1fe351444e0d349c2b0ef62cbe55cc5673be2a50565e043d1156b1eedd3b91f5ab13bd37920f14839fb9a4206fdbd63ea50
SSDEEP

196608:EC6nAxx1r294mJKx2NlnxK1oZd60Xg/YZaSGLXiZLziBR1Wd4Fw:QA7yJKIN9OoG0XwLXiNziBR1Wsw

Score

7^/10

Malware Config

Targets

- Target
  
  RazDva cracked.exe
- Size
  
  32.8MB
- MD5
  
  fb56d088113ea58e5f40469287356245
- SHA1
  
  27332eb7c906ce2782d551c9e61c97710aa962a6
- SHA256
  
  df47c1f0868c73e0fad25c9b84eeebeb8ee105b4cfed7d38fabbabcb08cd3557
- SHA512
  
  a22102d201f06789d2b796ad6e3745f7c090ef69f04bbc639fc242b3e86c2180a2fb13a14b07cff846905b9a894c9207986159bd508301f626d11661bed54bc0
- SSDEEP
  
  393216:uQx7oo/fgwxFhVMcq9yG1CPwDv3uFhwwz/1rU2lvzCDOEmXbZduSsAR:u7O9z/xbZsSs
Score

7^/10
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3