cdc9d636d01eb1771df21ec9cf5cc15b1d06ada651e1f5ff60fa2d14a462d39a

General
Target

cdc9d636d01eb1771df21ec9cf5cc15b1d06ada651e1f5ff60fa2d14a462d39a

Size

4MB

Sample

211014-ggexnsgbem

Score
8 /10
MD5

59ba4f1c5fad92d430671f9b4d0e4b84

SHA1

58aa1b99e284a31a7227973046583edc190fb812

SHA256

cdc9d636d01eb1771df21ec9cf5cc15b1d06ada651e1f5ff60fa2d14a462d39a

SHA512

cf327c646fd71e858509e6860867385b473e9f14956a30b888e207986bf486ea183b9e22c148ac970ddee58d6f48e1e46affc04a706094b3a06409510f896cdd

Malware Config
Targets
Target

cdc9d636d01eb1771df21ec9cf5cc15b1d06ada651e1f5ff60fa2d14a462d39a

MD5

59ba4f1c5fad92d430671f9b4d0e4b84

Filesize

4MB

Score
8 /10
SHA1

58aa1b99e284a31a7227973046583edc190fb812

SHA256

cdc9d636d01eb1771df21ec9cf5cc15b1d06ada651e1f5ff60fa2d14a462d39a

SHA512

cf327c646fd71e858509e6860867385b473e9f14956a30b888e207986bf486ea183b9e22c148ac970ddee58d6f48e1e46affc04a706094b3a06409510f896cdd

Signatures

  • Executes dropped EXE

  • Suspicious use of NtSetInformationThreadHideFromDebugger

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                      Privilege Escalation
                        Tasks

                        static1

                        behavioral1

                        8/10