ec042ea8b6b6a94678df7612bffa69082e772b6c9d8a57b0bc89bc1258046b80 | Triage

Analysis

max time kernel
108s
max time network
120s
resource
win7v191014

Sharing

General

Target

ec042ea8b6b6a94678df7612bffa69082e772b6c9d8a57b0bc89bc1258046b80
Sample

191025-fs2a5gpl12
SHA256

ec042ea8b6b6a94678df7612bffa69082e772b6c9d8a57b0bc89bc1258046b80

Score

N/A

Malware Config

Signatures

Suspicious use of NtSetInformationThreadHideFromDebugger 1 IoCs

Processes:

ec042ea8b6b6a94678df7612bffa69082e772b6c9d8a57b0bc89bc1258046b80.exe

pid process

1336 ec042ea8b6b6a94678df7612bffa69082e772b6c9d8a57b0bc89bc1258046b80.exe

C:\Users\Admin\AppData\Local\Temp\ec042ea8b6b6a94678df7612bffa69082e772b6c9d8a57b0bc89bc1258046b80.exe
"C:\Users\Admin\AppData\Local\Temp\ec042ea8b6b6a94678df7612bffa69082e772b6c9d8a57b0bc89bc1258046b80.exe"
1⤵
- Suspicious use of NtSetInformationThreadHideFromDebugger
PID:1336

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1336-0-0x00000000005FD000-0x0000000000640000-memory.dmp

Filesize
268KB

Download
memory/1336-1-0x00000000006E0000-0x00000000006F1000-memory.dmp

Filesize
68KB

Download