f8d80aa7b1fd3658dd59411d71e03b03ba9d5012c1da9064051417d8f107a0f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

nord.exe
Size

9.7MB
Sample

220912-vjvykadfg2
MD5

e10da6dadc88e2bfea3bf4837863e648
SHA1

f870a22d1ae6880fef77f5533fbda24ed44409e5
SHA256

f8d80aa7b1fd3658dd59411d71e03b03ba9d5012c1da9064051417d8f107a0f9
SHA512

c2a8eb65112230295e92b234778e4324868832dd9ceb40ffae2dda805b80aba9a48138057e95ac980db34b4b1346e9f2753435dcbd806dd07c96e47a8317cf8e
SSDEEP

196608:5VwZJje+/1/wbITLwOjUqVL2Vmd6+Dfc/f/+SHSEqEjcJgdaKnl:XSe+/1obI/fL2Vmd6mfc/eF6cJgdHl

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  nord.exe
- Size
  
  9.7MB
- MD5
  
  e10da6dadc88e2bfea3bf4837863e648
- SHA1
  
  f870a22d1ae6880fef77f5533fbda24ed44409e5
- SHA256
  
  f8d80aa7b1fd3658dd59411d71e03b03ba9d5012c1da9064051417d8f107a0f9
- SHA512
  
  c2a8eb65112230295e92b234778e4324868832dd9ceb40ffae2dda805b80aba9a48138057e95ac980db34b4b1346e9f2753435dcbd806dd07c96e47a8317cf8e
- SSDEEP
  
  196608:5VwZJje+/1/wbITLwOjUqVL2Vmd6+Dfc/f/+SHSEqEjcJgdaKnl:XSe+/1obI/fL2Vmd6mfc/eF6cJgdHl
Score

7^/10
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3