General
-
Target
https://drive.google.com/file/d/1DSL2Wev_upo4lE8jiZXx1auHevAD6d-f/view
-
Sample
250126-kse9csxmb1
Score
8/10
Malware Config
Targets
-
-
Target
https://drive.google.com/file/d/1DSL2Wev_upo4lE8jiZXx1auHevAD6d-f/view
Score8/10-
Uses browser remote debugging
Can be used control the browser and steal sensitive information such as credentials and session cookies.
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Authentication Process
1Subvert Trust Controls
1SIP and Trust Provider Hijacking
1