0571364098f40a3c60009ed794c6bba0375711d6b8cc697c9114df8ea4150b15 | Triage

Sharing

General

Target

11379015582786627911.exe
Size

6.6MB
Sample

220911-pfhk6sbef4
MD5

a2d7280fb1a88819932e1a73a38542f0
SHA1

0682680b071988c34e3c8eecb12aafd7df4ade0d
SHA256

0571364098f40a3c60009ed794c6bba0375711d6b8cc697c9114df8ea4150b15
SHA512

c0aa6c3bf1023c5bddd29563e30f007f87d3aace715081e178d0d7f85f245f0494d908eb3e371e8580778bda239587b3d738e9a08756ea22f7ef14731de5e830
SSDEEP

196608:CTLUG3f2675rSEEfCEQlj3QnXF0zswkLdKSEtaC:CXnf2675rYAGUdSRC

Score

8^/10

Malware Config

Targets

- Target
  
  11379015582786627911.exe
- Size
  
  6.6MB
- MD5
  
  a2d7280fb1a88819932e1a73a38542f0
- SHA1
  
  0682680b071988c34e3c8eecb12aafd7df4ade0d
- SHA256
  
  0571364098f40a3c60009ed794c6bba0375711d6b8cc697c9114df8ea4150b15
- SHA512
  
  c0aa6c3bf1023c5bddd29563e30f007f87d3aace715081e178d0d7f85f245f0494d908eb3e371e8580778bda239587b3d738e9a08756ea22f7ef14731de5e830
- SSDEEP
  
  196608:CTLUG3f2675rSEEfCEQlj3QnXF0zswkLdKSEtaC:CXnf2675rYAGUdSRC
Score

8^/10
- Executes dropped EXE
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2