c5a789a1439ceefd9990f60b91999b1187267eb1709a224ae687bed8463a3aa9 | Triage

Sharing

General

Target

c5a789a1439ceefd9990f60b91999b1187267eb1709a224ae687bed8463a3aa9
Size

2.6MB
Sample

220916-mk49mabbdk
MD5

5cc869a817b715c159ead8fbf935f605
SHA1

bfd3ab07cf3d6fbd65919526c8324d5e16955621
SHA256

c5a789a1439ceefd9990f60b91999b1187267eb1709a224ae687bed8463a3aa9
SHA512

516044436ddc83a4ef24eaffaabdd309b3687effe3a223043a4774266814bb82ef72bf183711eb979ce6845700c7bfaaddd22405fbb1ed1c22070e0c46c3d39b
SSDEEP

49152:iQ8Jt0z6z2bgJvzNY4Wax5syo1gKflMNCs7hxLeKP0Vnuctqb6y2WDtEElK:iPJt0O2bgv361x6tLcUuy2g3

Score

8^/10

Malware Config

Targets

- Target
  
  c5a789a1439ceefd9990f60b91999b1187267eb1709a224ae687bed8463a3aa9
- Size
  
  2.6MB
- MD5
  
  5cc869a817b715c159ead8fbf935f605
- SHA1
  
  bfd3ab07cf3d6fbd65919526c8324d5e16955621
- SHA256
  
  c5a789a1439ceefd9990f60b91999b1187267eb1709a224ae687bed8463a3aa9
- SHA512
  
  516044436ddc83a4ef24eaffaabdd309b3687effe3a223043a4774266814bb82ef72bf183711eb979ce6845700c7bfaaddd22405fbb1ed1c22070e0c46c3d39b
- SSDEEP
  
  49152:iQ8Jt0z6z2bgJvzNY4Wax5syo1gKflMNCs7hxLeKP0Vnuctqb6y2WDtEElK:iPJt0O2bgv361x6tLcUuy2g3
Score

8^/10
- Executes dropped EXE
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2