4e64323d39cdbf0ec3af7c241b32f3780e2f9ac994f7082289024e70f150d08f | Triage

Sharing

General

Target

4e64323d39cdbf0ec3af7c241b32f3780e2f9ac994f7082289024e70f150d08f
Size

6.1MB
Sample

220919-18n47sbfa9
MD5

204df28397f4ce049b324f5e1f8d0b08
SHA1

2032e4f4f2cdc8cb693358b843e924713a5572a6
SHA256

4e64323d39cdbf0ec3af7c241b32f3780e2f9ac994f7082289024e70f150d08f
SHA512

91321602b576be11a80c5ee1cb90f8deabd7ff05ef284a9ed1354d0e43c1f958ebb6f18f829dafcee00060537e70e55638ae3f6e0d40a58fc71cd1dec8b0edfc
SSDEEP

98304:3GKGPWoJk1bL5u281pOr7YqZlYgLho7cVosGO2StYkyvD:3LaJqst1pOrFNho7cVosGO12Z7

Score

8^/10

Malware Config

Targets

- Target
  
  4e64323d39cdbf0ec3af7c241b32f3780e2f9ac994f7082289024e70f150d08f
- Size
  
  6.1MB
- MD5
  
  204df28397f4ce049b324f5e1f8d0b08
- SHA1
  
  2032e4f4f2cdc8cb693358b843e924713a5572a6
- SHA256
  
  4e64323d39cdbf0ec3af7c241b32f3780e2f9ac994f7082289024e70f150d08f
- SHA512
  
  91321602b576be11a80c5ee1cb90f8deabd7ff05ef284a9ed1354d0e43c1f958ebb6f18f829dafcee00060537e70e55638ae3f6e0d40a58fc71cd1dec8b0edfc
- SSDEEP
  
  98304:3GKGPWoJk1bL5u281pOr7YqZlYgLho7cVosGO2StYkyvD:3LaJqst1pOrFNho7cVosGO12Z7
Score

8^/10
- Executes dropped EXE
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2